Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Cvelist
Cvelistadded 2025/11/14 9:32 p.m.11 views

CVE-2025-13186 Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution manage_customer cross site scripting

A weakness has been identified in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution up to 4.0. This impacts an unknown function of the file /dashboard/Ccustomer/managecustomer. This manipulation of the argument Search causes cross site scripting. The attack may be initiated...

4.8CVSS0.00026EPSS
Exploits1References4
CVE
CVEadded 2025/11/14 9:2 p.m.5 views

CVE-2025-13185

The CVE-2025-13185 entry concerns Bdtask/CodeCanyon News365 (up to version 7.0.3). A flaw in /admin/dashboard/profile allows manipulation of profile_image/banner_image arguments, causing unrestricted file upload. This is a remote-exploit vector, with public PoC available. Multiple sources confirm...

7.2CVSS6.3AI score0.00053EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/11/14 9:2 p.m.8 views

CVE-2025-13185 Bdtask/CodeCanyon News365 profile unrestricted upload

A security flaw has been discovered in Bdtask/CodeCanyon News365 up to 7.0.3. This affects an unknown function of the file /admin/dashboard/profile. The manipulation of the argument profileimage/bannerimage results in unrestricted upload. The attack can be launched remotely. The exploit has been...

5.8CVSS6.3AI score0.00053EPSS
Exploits1References4
CVE
CVEadded 2025/11/14 7:32 p.m.5 views

CVE-2025-13180

CVE-2025-13180 affects Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System (versions up to 20250320). The vulnerability arises from improper handling of the first_name/last_name parameters in the /edit_profile function, enabling basic cross-site scripting. It can be expl...

5.4CVSS5.3AI score0.00026EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2025/11/14 7:32 p.m.5 views

CVE-2025-13179

A CSRF (cross-site request forgery) vulnerability affects the Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to version 20250320. The issue enables manipulation via remote, with user interaction required for exploitation, and is described across multiple sources ...

6.5CVSS5.9AI score0.00048EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.3 views

PT-2025-47011

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution versions prior to 4.1 Description A flaw exists in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution. Manipulation of the Search argument in an unknown...

4.8CVSS5.4AI score0.00026EPSS
Exploits1References7
Rows per page
Query Builder