3 matches found
CVE-2026-1597
CVE-2026-1597 affects Bdtask SalesERP (
CVE-2025-13178
CVE-2025-13178 affects Bdtask/CodeCanyon SalesERP up to 20250728, targeting the /edit_profile file in the User Profile Handler. The issue arises from manipulation of the first_name/last_name parameters, enabling basic cross-site scripting. Remote exploitation is possible, and the exploit has been...
CVE-2025-13177
CVE-2025-13177 affects Bdtask/CodeCanyon SalesERP up to 20250728. The issue is described as a cross-site request forgery (CSRF) vulnerability with remote execution potential. Public exploits are noted, and the vendor has not responded to disclosure. The available data lists high impact (C/I/A) wi...