CNNVD-202601-4897 Information

CNNVD ID

CNNVD-202601-4897

Related CVE

CVE-2026-1600

• CNNVD Published: 2026-01-29

Description (Chinese)

Bdtask Bhojon All-In-One Restaurant Management System是孟加拉国Bdtask公司的一个餐饮业企业管理系统。 Bdtask Bhojon All-In-One Restaurant Management System 20260116及之前版本存在安全漏洞，该漏洞源于对文件/hungry/addtocart中参数price/allprice的错误操作，可能导致业务逻辑错误。

Description (English)

Bdtask Bhojon All-In-One Restairant Management System is a catering enterprise management system for Bdtask in Bangladesh. Bdtask Bhojon All-In-One Resurant Management System 20260116 and previous versions had a security loophole, which stemmed from a mishandling of the parameters price/allprice in the document/hungry/addtocart, which could lead to a business logic error.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Bdtask

Published

2026-01-29

Last Modified

2026-02-24

References

https://www.youtube.com/watch?v=UESZTjVS4Fs https://vuldb.com/?ctiid.343362 https://github.com/4m3rr0r/PoCVulDb/issues/14 https://vuldb.com/?id.343362 https://vuldb.com/?submit.740741 https://access.redhat.com/security/cve/cve-2026-1600