3 matches found
CVE-2025-13179
A CSRF (cross-site request forgery) vulnerability affects the Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to version 20250320. The issue enables manipulation via remote, with user interaction required for exploitation, and is described across multiple sources ...
CVE-2025-12287
The CVE-2025-12287 vulnerability affects Bdtask Wholesale Inventory Control and Inventory Management System (versions up to 20251013). The root cause is improper handling of the first_name/last_name parameters in the file /Admin_dashboard/edit_profile, enabling SQL injection. The issue can be exp...
CVE-2025-13180
CVE-2025-13180 affects Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System (versions up to 20250320). The vulnerability arises from improper handling of the first_name/last_name parameters in the /edit_profile function, enabling basic cross-site scripting. It can be expl...