CNNVD-202511-1722 Information
CNNVD ID
CNNVD-202511-1722
Related CVE
- CNNVD Published: 2025-11-14
Description (Chinese)
Bdtask Isshue - Multi Store eCommerce Shopping Cart Solution是孟加拉国Bdtask公司的一个电子商城系统。 Bdtask Isshue - Multi Store eCommerce Shopping Cart Solution 4.0及之前版本存在代码注入漏洞,该漏洞源于对文件/dashboard/Ccustomer/manage_customer中参数Search的错误操作,可能导致跨站脚本攻击。
Description (English)
Bdtask Isshue - Multi Store eCommerce Chopping Cart Solution is an e-commerce city system of Bdtask in Bangladesh. Bdtask Isshue - Multi Store eCommerce Chopping Cart Solution 4.0 and previous versions had a code-based loophole, which stemmed from an error in the Search parameter in the file/dashboard/Customer/manage customer, which could lead to a cross-script attack.
Hazard Level
Critical
Vulnerability Type
代码注入
Affected Vendor
Bdtask
Published
2025-11-14
Last Modified
2026-02-24
References
https://github.com/4m3rr0r/PoCVulDb/blob/main/README18.md https://vuldb.com/?ctiid.332474 https://vuldb.com/?id.332474 https://vuldb.com/?submit.685036
Share on: