Bdtask

Saleserp

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-1597

Medienbericht Exploit
  • EPSS 0.04%
  • Veröffentlicht 29.01.2026 16:32:05
  • Zuletzt bearbeitet 20.02.2026 14:43:40

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument ci_session leads to improper authorization. The attack may be per...

5.4

CVE-2025-13178

Exploit
  • EPSS 0.04%
  • Veröffentlicht 14.11.2025 19:02:10
  • Zuletzt bearbeitet 24.11.2025 13:57:19

A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. This vulnerability affects unknown code of the file /edit_profile of the component User Profile Handler. This manipulation of the argument first_name/last_name causes basic cross sit...

8.8

CVE-2025-13177

Exploit
  • EPSS 0.05%
  • Veröffentlicht 14.11.2025 19:02:07
  • Zuletzt bearbeitet 24.11.2025 13:58:18

A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit is now public and may be used. The vendo...