Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

404 matches found

OSV
OSVadded 2025/11/14 7:15 p.m.0 views

CVE-2025-13178

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.4CVSS4.2AI score0.00026EPSS
Exploits1References4
NVD
NVDadded 2025/11/14 7:15 p.m.2 views

CVE-2025-13177

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

8.8CVSS0.00039EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/11/14 7:2 p.m.1 views

CVE-2025-13178 Bdtask/CodeCanyon SalesERP User Profile edit_profile cross site scripting

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /editprofile of the component User Profile Handler. This manipulation of the argument firstname/lastname causes basic cross site scripting. The attack is possible to be carried...

5.1CVSS3.8AI score0.00026EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/11/14 7:2 p.m.4 views

CVE-2025-13177 Bdtask/CodeCanyon SalesERP cross-site request forgery

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but...

5.3CVSS4.6AI score0.00039EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.2 views

PT-2025-46998

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon SalesERP versions up to 20250728 Description A security issue exists in Bdtask/CodeCanyon SalesERP. The issue is related to the User Profile Handler component and specifically affects code within the /edit profile file...

5.4CVSS3.4AI score0.00026EPSS
Exploits1References10
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.3 views

PT-2025-47001

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System versions up to 20250320 Description A cross-site request forgery issue exists in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System. The...

6.5CVSS4.4AI score0.00048EPSS
Exploits1References9
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.2 views

PT-2025-47011

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution versions prior to 4.1 Description A flaw exists in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution. Manipulation of the Search argument in an unknown...

4.8CVSS5.4AI score0.00026EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.2 views

PT-2025-46997

Name of the Vulnerable Software and Affected Versions Bdtask/CodeCanyon SalesERP versions up to 20250728 Description A cross-site request forgery condition exists in Bdtask/CodeCanyon SalesERP. The issue affects an unspecified component and allows for remote manipulation. The exploit is publicly...

8.8CVSS4.5AI score0.00039EPSS
Exploits1References8
RedhatCVE
RedhatCVEadded 2025/10/07 6:9 a.m.6 views

CVE-2025-11304

A flaw has been found in CodeCanyon/ui-lib Mentor LMS up to 1.1.1. Affected by this vulnerability is an unknown functionality of the component API. Executing manipulation can lead to permissive cross-domain policy with untrusted domains. The attack may be launched remotely. The exploit has been...

7.5CVSS6.4AI score0.00021EPSS
Exploits0References1
NVD
NVDadded 2025/10/05 9:15 p.m.2 views

CVE-2025-11304

A flaw has been found in CodeCanyon/ui-lib Mentor LMS up to 1.1.1. Affected by this vulnerability is an unknown functionality of the component API. Executing manipulation can lead to permissive cross-domain policy with untrusted domains. The attack may be launched remotely. The exploit has been...

7.5CVSS0.00021EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/10/05 9:2 p.m.3 views

CVE-2025-11304 CodeCanyon/ui-lib Mentor LMS API cross-domain policy

A flaw has been found in CodeCanyon/ui-lib Mentor LMS up to 1.1.1. Affected by this vulnerability is an unknown functionality of the component API. Executing manipulation can lead to permissive cross-domain policy with untrusted domains. The attack may be launched remotely. The exploit has been...

7.5CVSS6.2AI score0.00021EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/05 9:2 p.m.2 views

EUVD-2025-32470

A flaw has been found in CodeCanyon/ui-lib Mentor LMS up to 1.1.1. Affected by this vulnerability is an unknown functionality of the component API. Executing manipulation can lead to permissive cross-domain policy with untrusted domains. The attack may be launched remotely. The exploit has been...

7.5CVSS6AI score0.00021EPSS
Exploits0References6
Cvelist
Cvelistadded 2025/10/05 9:2 p.m.8 views

CVE-2025-11304 CodeCanyon/ui-lib Mentor LMS API cross-domain policy

A flaw has been found in CodeCanyon/ui-lib Mentor LMS up to 1.1.1. Affected by this vulnerability is an unknown functionality of the component API. Executing manipulation can lead to permissive cross-domain policy with untrusted domains. The attack may be launched remotely. The exploit has been...

7.5CVSS0.00021EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/10/05 12:0 a.m.3 views

CodeCanyon Mentor LMS 安全漏洞

CodeCanyon Mentor LMS is a learning management system from CodeCanyon. A security vulnerability exists in CodeCanyon Mentor LMS version 1.1.1 and earlier, which stems from the presence of unknown functionality in the API component that could lead to overly lax cross-domain policies...

7.5CVSS6.4AI score0.00021EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/10/05 12:0 a.m.2 views

PT-2025-40820

Name of the Vulnerable Software and Affected Versions CodeCanyon/ui-lib Mentor LMS versions up to 1.1.1 Description A flaw exists in the component API of CodeCanyon/ui-lib Mentor LMS. This issue can lead to a permissive cross-domain policy with untrusted domains, allowing for remote attacks. The...

7.5CVSS6.1AI score0.00021EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-44420

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00088EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-16338

Malicious code in bioql PyPI...

6.9CVSS5.6AI score0.00068EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-9674

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00259EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2025-22018

Malicious code in bioql PyPI...

7.2CVSS5AI score0.00362EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-49502

Malicious code in bioql PyPI...

8.8CVSS6AI score0.01237EPSS
Exploits3References4
Rows per page
Query Builder