CNNVD-202601-4901 Information

Jan 29, 2026 cve

CNNVD ID

CNNVD-202601-4901

CVE-2026-1599

CNNVD Published: 2026-01-29

Description (Chinese)

Bdtask Bhojon All-In-One Restaurant Management System是孟加拉国Bdtask公司的一个餐饮业企业管理系统。 Bdtask Bhojon All-In-One Restaurant Management System 20260116及之前版本存在安全漏洞，该漏洞源于对文件/hungry/placeorder中参数orggrandTotal/vat/service_charge/grandtotal的错误操作，可能导致业务逻辑错误。

Description (English)

Bdtask Bhojon All-In-One Restairant Management System is a catering enterprise management system for Bdtask in Bangladesh. Bdtask Bhojon All-In-One Resurant Management System 20260116 and previous versions contain a security loophole, which stems from the mishandling of the parameters in the document/hungry/placeorderorggrandTotal/vat/service charge/grandtotal, which may lead to a business logic error.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Bdtask

Published

2026-01-29

Last Modified

2026-02-24

References

https://www.youtube.com/watch?v=n7xLBAOrKAU https://github.com/4m3rr0r/PoCVulDb/issues/13 https://vuldb.com/?id.343361 https://vuldb.com/?ctiid.343361 https://vuldb.com/?submit.740740 https://access.redhat.com/security/cve/cve-2026-1599

Share on: