CNNVD-202602-1170 Information

CNNVD ID

CNNVD-202602-1170

Related CVE

CVE-2020-37106

• CNNVD Published: 2026-02-07

Description (Chinese)

Bdtask Business Live Chat Software是孟加拉国Bdtask公司的一个线上会议软件。 Bdtask Business Live Chat Software 1.0版本存在跨站请求伪造漏洞，该漏洞源于攻击者可能在未经身份验证的情况下更改用户账户角色。

Description (English)

Bdtask Business Live Chat Software is an online meeting software for Bdtask in Bangladesh. Version 1.0 of Bdtask Business Live Chat Software contains a cross-site request for a false loophole, which stems from the possibility that the assailant may change the user account role without identification.

Hazard Level

High

Vulnerability Type

跨站请求伪造

Affected Vendor

Bdtask

Published

2026-02-07

Last Modified

2026-02-24

References

https://www.bdtask.com/business-live-chat-software.php https://www.exploit-db.com/exploits/48141 https://www.vulncheck.com/advisories/business-live-chat-software-cross-site-request-forgery-add-admin