CNNVD-202509-2869 Information

CNNVD ID

CNNVD-202509-2869

Related CVE

CVE-2025-50255

• CNNVD Published: 2025-09-18

Description (Chinese)

BPC Banking SmartVista Suite是美国BPC Banking公司的一个支付软件。 BPC Banking SmartVista Suite 2.2.22版本存在安全漏洞，该漏洞源于特制GET请求，可能导致跨站请求伪造攻击。

Description (English)

BPC Banking SmartVista Suite is a payment software for BPC Banking in the United States. The BPC Banking SmartVista Suite 2.2.22 contains a security loophole that originates from a specially designed GET request and may lead to a cross-site request for a false attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

BPC Banking

Published

2025-09-18

Last Modified

2026-02-24

References

https://gitlab.com/c2at3/cve-2025-50255/-/blob/main/Bypassing_CSRF_Protection_in_Smartvista-BackOffice.pdf