Improper Authentication Control in Online Food Delivery System by Restajet Information Technologies Inc.
CVE-2025-1928

9.1CRITICAL

Key Information:

Vendor: Restajet Information Technologies Inc.
Status: Online Food Delivery System
Vendor: CVE Published:; 19 December 2025

🔔 Create Restajet Information Technologies Inc. Vulnerability Alert

What is CVE-2025-1928?

A vulnerability has been identified in the Online Food Delivery System developed by Restajet Information Technologies Inc. This security flaw involves an improper restriction on excessive authentication attempts, which can be exploited to compromise password recovery mechanisms. Attackers may leverage this vulnerability to gain unauthorized access to user accounts, posing a significant risk to sensitive information and user privacy.

Affected Version(s)

Online Food Delivery System 0 <= 19122025

References

https://www.usom.gov.tr/bildirim/tr-25-0469

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 19, 2025
Vulnerability Reserved
Mar 4, 2025

Credit

Berat ARSLAN

JSON