2 matches found
CVE-2025-12222
CVE-2025-12222 affects Bdtask Flight Booking Software up to v3.1. The vulnerability exists in the Deposit Handler’s Deposit component, specifically the /admin/transaction/deposit path, where an unknown functionality allows unrestricted file upload. This can be exploited remotely and was publicly ...
CVE-2025-12223
The vulnerability CVE-2025-12223 affects Bdtask Flight Booking Software up to version 3.1, specifically the Package Information Module’s /b2c/package-information file. It enables unrestricted remote file uploads due to an upload restriction flaw, with exploitation reported as public. Multiple sou...