Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

RedhatCVE
RedhatCVEadded 2026/01/30 9:23 p.m.2 views

CVE-2026-1597

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument cisession leads to improper authorization. The attack may be performed from remote. The exploit has been disclos...

8.8CVSS5.4AI score0.00062EPSS
Exploits1References1
NVD
NVDadded 2026/01/29 5:16 p.m.3 views

CVE-2026-1597

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument cisession leads to improper authorization. The attack may be performed from remote. The exploit has been disclos...

8.8CVSS0.00062EPSS
Exploits1References5
OSV
OSVadded 2026/01/29 5:16 p.m.2 views

CVE-2026-1597

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument cisession leads to improper authorization. The attack may be performed from remote. The exploit has been disclos...

8.8CVSS5.2AI score
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/01/29 4:32 p.m.3 views

CVE-2026-1597 Bdtask SalesERP Administrative Endpoint improper authorization

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument cisession leads to improper authorization. The attack may be performed from remote. The exploit has been disclos...

6.5CVSS6.1AI score0.00062EPSS
Exploits1References5
CVE
CVEadded 2026/01/29 4:32 p.m.6 views

CVE-2026-1597

CVE-2026-1597 affects Bdtask SalesERP (

8.8CVSS6.1AI score0.00062EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/01/29 4:32 p.m.2 views

CVE-2026-1597

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument cisession leads to improper authorization. The attack may be performed from remote. The exploit has been disclos...

6.5CVSS5.4AI score0.00062EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2026/01/29 4:32 p.m.28 views

CVE-2026-1597 Bdtask SalesERP Administrative Endpoint improper authorization

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument cisession leads to improper authorization. The attack may be performed from remote. The exploit has been disclos...

6.5CVSS0.00062EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/01/29 12:0 a.m.4 views

PT-2026-5308

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument ci session leads to improper authorization. The attack may be performed from remote. The exploit has been...

6.5CVSS5.4AI score0.00062EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2025/11/17 1:14 p.m.1 views

CVE-2025-13177

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

8.8CVSS4.7AI score0.00039EPSS
Exploits1References1
EUVD
EUVDadded 2025/11/14 9:30 p.m.2 views

EUVD-2025-197653

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

5.3CVSS6AI score0.00039EPSS
Exploits1References5
OSV
OSVadded 2025/11/14 7:15 p.m.1 views

CVE-2025-13178

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.4CVSS4.2AI score0.00026EPSS
Exploits1References4
NVD
NVDadded 2025/11/14 7:15 p.m.3 views

CVE-2025-13178

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.4CVSS0.00026EPSS
Exploits1References4
NVD
NVDadded 2025/11/14 7:15 p.m.2 views

CVE-2025-13177

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

8.8CVSS0.00039EPSS
Exploits1References4
OSV
OSVadded 2025/11/14 7:15 p.m.0 views

CVE-2025-13177

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

8.8CVSS5.3AI score
Exploits0References4
EUVD
EUVDadded 2025/11/14 7:2 p.m.1 views

EUVD-2025-197652

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.1CVSS5.2AI score0.00026EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/11/14 7:2 p.m.1 views

CVE-2025-13178 Bdtask/CodeCanyon SalesERP User Profile edit_profile cross site scripting

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.1CVSS3.8AI score0.00026EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/11/14 7:2 p.m.9 views

CVE-2025-13178 Bdtask/CodeCanyon SalesERP User Profile edit_profile cross site scripting

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.1CVSS0.00026EPSS
Exploits1References4
CVE
CVEadded 2025/11/14 7:2 p.m.4 views

CVE-2025-13178

CVE-2025-13178 affects Bdtask/CodeCanyon SalesERP up to 20250728, targeting the /edit_profile file in the User Profile Handler. The issue arises from manipulation of the first_name/last_name parameters, enabling basic cross-site scripting. Remote exploitation is possible, and the exploit has been...

5.4CVSS3.9AI score0.00026EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/11/14 7:2 p.m.4 views

CVE-2025-13177 Bdtask/CodeCanyon SalesERP cross-site request forgery

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

5.3CVSS4.6AI score0.00039EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/11/14 7:2 p.m.9 views

CVE-2025-13177 Bdtask/CodeCanyon SalesERP cross-site request forgery

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

5.3CVSS0.00039EPSS
Exploits1References4
Rows per page
Query Builder