CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/11/14 7:2 p.m.•2 views

EUVD-2025-197652

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.1CVSS5.2AI score0.002EPSS

Vulnrichment•added 2025/11/14 7:2 p.m.•4 views

CVE-2025-13177 Bdtask/CodeCanyon SalesERP cross-site request forgery

5.3CVSS4.6AI score0.00209EPSS

CVE•added 2025/11/14 7:2 p.m.•8 views

CVE-2025-13177

CVE-2025-13177 affects Bdtask/CodeCanyon SalesERP up to 20250728. The issue is described as a cross-site request forgery (CSRF) vulnerability with remote execution potential. Public exploits are noted, and the vendor has not responded to disclosure. The available data lists high impact (C/I/A) wi...

8.8CVSS4.8AI score0.00209EPSS

Exploits1References4Affected Software1

Cvelist•added 2025/11/14 7:2 p.m.•11 views

CVE-2025-13177 Bdtask/CodeCanyon SalesERP cross-site request forgery

5.3CVSS0.00209EPSS

5.4CVSS4.2AI score0.00228EPSS

Bdtask Isshue - Multi Store eCommerce Shopping Cart Solution 代码注入漏洞

Bdtask Isshue - Multi Store eCommerce Shopping Cart Solution is an e-commerce shopping cart system from Bdtask Bangladesh. A code injection vulnerability exists in Bdtask Isshue - Multi Store eCommerce Shopping Cart Solution version 4.0 and prior versions, which originates from an incorrect...

7.2CVSS5AI score0.00311EPSS

Bdtask News365 代码问题漏洞

Bdtask News365 is a web magazine software from Bdtask Bangladesh. A code issue vulnerability exists in Bdtask News365 7.0.3 and earlier versions, which stems from incorrect manipulation of the parameters profileimage/bannerimage in the file /admin/dashboard/profile, which may result in unlimited...

CNNVD•added 2025/11/14 12:0 a.m.•4 views

Bdtask Wholesale Inventory Control and Inventory Management System 安全漏洞

Bdtask Wholesale Inventory Control and Inventory Management System is an inventory management software from Bdtask Bangladesh. A security vulnerability exists in Bdtask Wholesale Inventory Control and Inventory Management System 20250320 and prior versions, which stems from cross-site request...

6.5CVSS4.9AI score0.00189EPSS

Positive Technologies•added 2025/11/14 12:0 a.m.•3 views

PT-2025-46997

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon SalesERP versions up to 20250728 Description A cross-site request forgery condition exists in Bdtask/CodeCanyon SalesERP. The issue affects an unspecified component and allows for remote manipulation. The exploit is publicly...

8.8CVSS4.5AI score0.00209EPSS

Exploits1References8

CNNVD•added 2025/11/14 12:0 a.m.•1 views

Bdtask SalesERP 安全漏洞

Bdtask SalesERP is a sales enterprise resource planning software from Bdtask Bangladesh. A security vulnerability exists in Bdtask SalesERP 20250728 and prior versions that stems from cross-site request forgery...

8.8CVSS4.9AI score0.00209EPSS

5.4CVSS4.3AI score0.002EPSS

Bdtask SalesERP 安全漏洞

Bdtask SalesERP is a sales enterprise resource planning software from Bdtask Bangladesh. A security vulnerability exists in Bdtask SalesERP 20250728 and earlier versions, which stems from incorrect manipulation of the parameters firstname/lastname in the file /editprofile, and could lead to a bas...

5.4CVSS4.3AI score0.002EPSS

Bdtask Wholesale Inventory Control and Inventory Management System 安全漏洞

Bdtask Wholesale Inventory Control and Inventory Management System is an inventory management software from Bdtask Bangladesh. A security vulnerability exists in Bdtask Wholesale Inventory Control and Inventory Management System 20250320 and earlier versions, which stems from incorrect manipulati...

Positive Technologies•added 2025/11/14 12:0 a.m.•4 views

PT-2025-47011

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution versions prior to 4.1 Description A flaw exists in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution. Manipulation of the Search argument in an unknown...

4.8CVSS5.4AI score0.00228EPSS

Exploits1References7

Positive Technologies•added 2025/11/14 12:0 a.m.•4 views

PT-2025-47001

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System versions up to 20250320 Description A cross-site request forgery issue exists in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System. The...

6.5CVSS4.4AI score0.00189EPSS

Exploits1References9

RedhatCVE•added 2025/10/28 3:4 p.m.•1 views

CVE-2025-12288

A vulnerability was detected in Bdtask Pharmacy Management System up to 9.4. Affected is an unknown function of the file /user/edituser/ of the component User Profile Handler. Performing manipulation results in authorization bypass. Remote exploitation of the attack is possible. The exploit is no...

8.8CVSS6.3AI score0.00392EPSS

Exploits1References1

RedhatCVE•added 2025/10/28 3:4 p.m.•2 views

CVE-2025-12287

A security vulnerability has been detected in Bdtask Wholesale Inventory Control and Inventory Management System up to 20251013. This impacts an unknown function of the file /Admindashboard/editprofile. Such manipulation of the argument firstname/lastname leads to sql injection. The attack may be...

7.2CVSS6.9AI score0.00402EPSS

Exploits1References1

RedhatCVE•added 2025/10/28 6:59 a.m.•11 views

CVE-2025-12222

A security vulnerability has been detected in Bdtask Flight Booking Software up to 3.1. Affected by this issue is some unknown functionality of the file /admin/transaction/deposit of the component Deposit Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely...

8.8CVSS6.5AI score0.00385EPSS

Exploits1References1

EUVD•added 2025/10/27 3:30 p.m.•3 views

EUVD-2025-36183

5.3CVSS5.9AI score0.00392EPSS

OSV•added 2025/10/27 3:15 p.m.•1 views

CVE-2025-12288

8.8CVSS5.5AI score0.00392EPSS