Filtered by vendor Bdtask
Subscribe
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-28993 | 1 Bdtask | 1 Multi Store Inventory Management System | 2022-06-01 | 7.5 HIGH | 9.8 CRITICAL |
Multi Store Inventory Management System v1.0 allows attackers to perform an account takeover via a crafted POST request. | |||||
CVE-2022-28991 | 1 Bdtask | 1 Multi Store Inventory Management System | 2022-05-31 | 5.0 MEDIUM | 7.5 HIGH |
Multi Store Inventory Management System v1.0 was discovered to contain an information disclosure vulnerability which allows attackers to access sensitive files. | |||||
CVE-2020-36012 | 1 Bdtask | 1 Multi-store | 2021-01-29 | 3.5 LOW | 4.8 MEDIUM |
Stored XSS vulnerability in BDTASK Multi-Store Inventory Management System 1.0 allows a local admin to inject arbitrary code via the Customer Name Field. | |||||
CVE-2020-13426 | 1 Bdtask | 1 Multi-scheduler | 2020-06-26 | 4.3 MEDIUM | 6.5 MEDIUM |
The Multi-Scheduler plugin 1.0.0 for WordPress has a Cross-Site Request Forgery (CSRF) vulnerability in the forms it presents, allowing the possibility of deleting records (users) when an ID is known. |