What is GHSA-3cg9-jffc-jpcv?

GHSA-3cg9-jffc-jpcv is a security advisory published by GitHub Security Advisories with High severity. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...

Which CVE IDs does GHSA-3cg9-jffc-jpcv cover?

GHSA-3cg9-jffc-jpcv covers the following CVE IDs: CVE-2025-1929. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-3cg9-jffc-jpcv?

GHSA-3cg9-jffc-jpcv has a CVSS v3 base score of 7.2, published by GitHub Security Advisories.

GHSA-3cg9-jffc-jpcvHighCVSS 7.2

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...

Vendor

GitHub Security Advisories

Published

August 15, 2025

Last Modified

June 6, 2026

🔗 CVE IDs covered (1)

CVE-2025-1929 →

📋 Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Risk Yazılım Teknolojileri Ltd. Şti. Reel Sektör Hazine ve Risk Yönetimi Yazılımı allows SQL Injection, CAPEC - 7 - Blind SQL Injection.This issue affects Reel Sektör Hazine ve Risk Yönetimi Yazılımı: through 1.0.0.4.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2025-1929
https://www.usom.gov.tr/bildirim/tr-25-0198
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0198
https://github.com/advisories/GHSA-3cg9-jffc-jpcv