Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

262 matches found

NVD
NVDadded 2025/10/27 3:15 p.m.6 views

CVE-2025-12288

A vulnerability was detected in Bdtask Pharmacy Management System up to 9.4. Affected is an unknown function of the file /user/edituser/ of the component User Profile Handler. Performing manipulation results in authorization bypass. Remote exploitation of the attack is possible. The exploit is no...

8.8CVSS0.00392EPSS
Exploits1References4
OSV
OSVadded 2025/10/27 3:15 p.m.2 views

CVE-2025-12287

A security vulnerability has been detected in Bdtask Wholesale Inventory Control and Inventory Management System up to 20251013. This impacts an unknown function of the file /Admindashboard/editprofile. Such manipulation of the argument firstname/lastname leads to sql injection. The attack may be...

7.2CVSS5.7AI score0.00402EPSS
Exploits1References4
NVD
NVDadded 2025/10/27 3:15 p.m.1 views

CVE-2025-12287

A security vulnerability has been detected in Bdtask Wholesale Inventory Control and Inventory Management System up to 20251013. This impacts an unknown function of the file /Admindashboard/editprofile. Such manipulation of the argument firstname/lastname leads to sql injection. The attack may be...

7.2CVSS0.00402EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/10/27 2:32 p.m.3 views

CVE-2025-12288 Bdtask Pharmacy Management System User Profile edit_user authorization

A vulnerability was detected in Bdtask Pharmacy Management System up to 9.4. Affected is an unknown function of the file /user/edituser/ of the component User Profile Handler. Performing manipulation results in authorization bypass. Remote exploitation of the attack is possible. The exploit is no...

5.3CVSS6AI score0.00392EPSS
Exploits1References4
CVE
CVEadded 2025/10/27 2:32 p.m.11 views

CVE-2025-12288

CVE-2025-12288 affects Bdtask Pharmacy Management System up to version 9.4. The vulnerability targets an unknown function in the file /user/edit_user/ within the User Profile Handler. Manipulation of this function can bypass authorization, with remote exploitation described as possible and the ex...

8.8CVSS6AI score0.00392EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/27 2:32 p.m.1 views

CVE-2025-12287 Bdtask Wholesale Inventory Control and Inventory Management System edit_profile sql injection

A security vulnerability has been detected in Bdtask Wholesale Inventory Control and Inventory Management System up to 20251013. This impacts an unknown function of the file /Admindashboard/editprofile. Such manipulation of the argument firstname/lastname leads to sql injection. The attack may be...

5.8CVSS6.5AI score0.00402EPSS
Exploits1References4
CVE
CVEadded 2025/10/27 2:32 p.m.8 views

CVE-2025-12287

The CVE-2025-12287 vulnerability affects Bdtask Wholesale Inventory Control and Inventory Management System (versions up to 20251013). The root cause is improper handling of the first_name/last_name parameters in the file /Admin_dashboard/edit_profile, enabling SQL injection. The issue can be exp...

7.2CVSS6.5AI score0.00402EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2025/10/27 5:15 a.m.3 views

CVE-2025-12223

A vulnerability was detected in Bdtask Flight Booking Software up to 3.1. This affects an unknown part of the file /b2c/package-information of the component Package Information Module. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit is now public...

8.8CVSS5.4AI score0.00326EPSS
Exploits1References4
NVD
NVDadded 2025/10/27 5:15 a.m.5 views

CVE-2025-12222

A security vulnerability has been detected in Bdtask Flight Booking Software up to 3.1. Affected by this issue is some unknown functionality of the file /admin/transaction/deposit of the component Deposit Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely...

8.8CVSS0.00385EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/10/27 4:32 a.m.3 views

CVE-2025-12223 Bdtask Flight Booking Software Package Information package-information unrestricted upload

A vulnerability was detected in Bdtask Flight Booking Software up to 3.1. This affects an unknown part of the file /b2c/package-information of the component Package Information Module. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit is now public...

6.5CVSS6.2AI score0.00326EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/27 4:32 a.m.4 views

EUVD-2025-36076

A vulnerability was detected in Bdtask Flight Booking Software up to 3.1. This affects an unknown part of the file /b2c/package-information of the component Package Information Module. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit is now public...

6.5CVSS6.1AI score0.00326EPSS
Exploits1References5
CVE
CVEadded 2025/10/27 4:32 a.m.12 views

CVE-2025-12223

The vulnerability CVE-2025-12223 affects Bdtask Flight Booking Software up to version 3.1, specifically the Package Information Module’s /b2c/package-information file. It enables unrestricted remote file uploads due to an upload restriction flaw, with exploitation reported as public. Multiple sou...

8.8CVSS6.3AI score0.00326EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2025/10/27 4:32 a.m.10 views

CVE-2025-12223 Bdtask Flight Booking Software Package Information package-information unrestricted upload

A vulnerability was detected in Bdtask Flight Booking Software up to 3.1. This affects an unknown part of the file /b2c/package-information of the component Package Information Module. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit is now public...

6.5CVSS0.00326EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/10/27 4:32 a.m.12 views

CVE-2025-12222 Bdtask Flight Booking Software Deposit deposit unrestricted upload

A security vulnerability has been detected in Bdtask Flight Booking Software up to 3.1. Affected by this issue is some unknown functionality of the file /admin/transaction/deposit of the component Deposit Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely...

6.5CVSS0.00385EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/27 4:32 a.m.4 views

EUVD-2025-36077

A security vulnerability has been detected in Bdtask Flight Booking Software up to 3.1. Affected by this issue is some unknown functionality of the file /admin/transaction/deposit of the component Deposit Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely...

6.5CVSS6.1AI score0.00385EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.6 views

PT-2025-43876

Name of the Vulnerable Software and Affected Versions Bdtask Flight Booking Software versions prior to 3.1 Description A security issue exists in Bdtask Flight Booking Software. The issue involves unrestricted upload capabilities through an unknown functionality within the...

6.5CVSS6.2AI score0.00385EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.3 views

PT-2025-43962

Name of the Vulnerable Software and Affected Versions Bdtask Wholesale Inventory Control and Inventory Management System versions prior to 20251014 Description A security issue exists in Bdtask Wholesale Inventory Control and Inventory Management System. Manipulation of the first name and last na...

7.2CVSS5AI score0.00402EPSS
Exploits1References7
CNNVD
CNNVDadded 2025/10/27 12:0 a.m.4 views

Bdtask Wholesale Inventory Control SQL注入漏洞

Bdtask Wholesale Inventory Control is an inventory management system from Bdtask Bangladesh. A SQL injection vulnerability exists in Bdtask Wholesale Inventory Control 20251013 and earlier versions, which stems from incorrect manipulation of the parameter firstname/lastname in the file...

7.2CVSS5.6AI score0.00402EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.2 views

PT-2025-43963

Name of the Vulnerable Software and Affected Versions Bdtask Pharmacy Management System versions prior to 9.4 Description A flaw exists in Bdtask Pharmacy Management System that allows for authorization bypass. This occurs through manipulation of an unknown function within the /user/edit user/ fi...

8.8CVSS4.6AI score0.00392EPSS
Exploits1References7
CNNVD
CNNVDadded 2025/10/27 12:0 a.m.4 views

Bdtask Flight Booking Software 代码问题漏洞

Bdtask Flight Booking Software is an airline booking software from Bdtask Bangladesh. A code issue vulnerability exists in Bdtask Flight Booking Software version 3.1 and earlier, which stems from an unrestricted upload function in the component Deposit Handler in the file...

8.8CVSS6.6AI score0.00385EPSS
Exploits1References4
Rows per page
Query Builder