CVE 8.8 HIGH

SQLi in Ergosis Security Systems’ ZEUS PDKS_CVE-2025-7636

February 10, 2026 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS allows SQL Injection.This issue affects ZEUS PDKS: from <1.0.5.10 through 10022026.

NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

SQL Injection vulnerability in ZEUS PDKS due to improper neutralization of special elements in SQL commands

Basic Information

ID CVE-2025-7636

Source TR-CERT

Published Feb 10, 2026 at 14:30

Modified Feb 10, 2026 at 14:59

Affected Product

Vendor Ergosis Security Systems Computer Industry and Trade Inc.

Product ZEUS PDKS

Version <1.0.5.10

Affected Versions Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS <1.0.5.10

CWE Classification

CWE-89

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Ergosis Security Systems Computer Industry and Trade Inc.

Product ZEUS PDKS

Version <1.0.5.10

References

www.usom.gov.tr /bildirim/tr-26-0052

{
    "lastseen": "",
    "description": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS allows SQL Injection.This issue affects ZEUS PDKS: from <1.0.5.10 through 10022026.\n\nNOTE: The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-02-10T14:30:49.748Z",
    "modified": "2026-02-10T14:59:33.735Z",
    "type": "cve",
    "title": "SQLi in Ergosis Security Systems' ZEUS PDKS",
    "source": "TR-CERT",
    "references": "https://www.usom.gov.tr/bildirim/tr-26-0052",
    "id": "CVE-2025-7636",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS <1.0.5.10",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ZEUS PDKS",
    "version": "<1.0.5.10",
    "vendor": "Ergosis Security Systems Computer Industry and Trade Inc.",
    "ai_description": "SQL Injection vulnerability in ZEUS PDKS due to improper neutralization of special elements in SQL commands",
    "ai_severity": "High",
    "ai_vendor": "Ergosis Security Systems Computer Industry and Trade Inc.",
    "ai_product": "ZEUS PDKS",
    "ai_version": "<1.0.5.10",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply