CVE 9.4 CRITICAL

Reflected XSS in E-Kalite Software Hardware Engineering’s Turboard_CVE-2025-8668

February 11, 2026 invoker category_cve
9.4 / 10
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in E-Kalite Software Hardware Engineering Design and Internet Services Industry and Trade Ltd. Co. Turboard allows Reflected XSS.This issue affects Turboard: from 2025.07 through 11022026.Β NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

Reflected XSS vulnerability in Turboard, allowing attackers to inject malicious scripts

Basic Information

ID CVE-2025-8668
Source TR-CERT
Published Feb 11, 2026 at 13:34
Modified Feb 11, 2026 at 14:09

Affected Product

Vendor E-Kalite Software Hardware Engineering Design and Internet Services Industry and Trade Ltd. Co.
Product Turboard
Version 2025.07
Affected Versions E-Kalite Software Hardware Engineering Design and Internet Services Industry and Trade Ltd. Co. Turboard 2025.07

CWE Classification

CWE-79

AI Assessment

AI Score 9.4 / 10
AI Severity Critical
Vendor E-Kalite Software
Product Turboard
Version 2025.07

References

πŸ’­ Join the Security Discussion

πŸ”’ Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.