3 matches found
EUVD-2026-4955
A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument cisession leads to improper authorization. The attack may be performed from remote. The exploit has been disclos...
CVE-2025-13178
A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...
CVE-2025-13177
CVE-2025-13177 affects Bdtask/CodeCanyon SalesERP up to 20250728. The issue is described as a cross-site request forgery (CSRF) vulnerability with remote execution potential. Public exploits are noted, and the vendor has not responded to disclosure. The available data lists high impact (C/I/A) wi...