Path Traversal Vulnerability in Saysis Web Portal by Saysis Computer Systems Trade Ltd. Co.
CVE-2025-10449

8.6HIGH

Key Information:

Vendor: Saysis Computer Systems Trade Ltd. Co.
Status: Saysis Web Portal
Vendor: CVE Published:; 25 September 2025

🔔 Create Saysis Computer Systems Trade Ltd. Co. Vulnerability Alert

What is CVE-2025-10449?

A path traversal vulnerability exists in the Saysis Web Portal, allowing attackers to access restricted directories on the server. This flaw affects the Saysis Web Portal versions 3.1.9 and 3.2.0 prior to 3.2.1, enabling potential unauthorized file access. Exploiting this vulnerability allows attackers to traverse directories, potentially leading to sensitive information disclosure.

Affected Version(s)

Saysis Web Portal 3.1.9 & 3.2.0 < 3.2.1

References

https://www.usom.gov.tr/bildirim/tr-25-0297

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 25, 2025
Vulnerability Reserved
Sep 14, 2025

Credit

İbrahim YİĞİTSOY

JSON