CVE-2026-10172 – Bdtask Multi-Store Inventory Management System Component Module.php upload unrestricted upload

CVE ID :CVE-2026-10172

Published : May 31, 2026, 8:16 a.m. | 16 minutes ago

Description :A security flaw has been discovered in Bdtask Multi-Store Inventory Management System 1.0. The affected element is the function Upload of the file application/modules/dashboard/controllers/Module.php of the component Component Module. The manipulation of the argument module results in unrestricted upload. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-10173 – Orthanc Explorer 2 URL StudyList.vue cross site scripting

CVE-2026-10171 – code-projects Online Music Site AdminUpdateAlbum.php sql injection

CVE-2026-10170 – code-projects Visitor Management System phone_0.php sql injection

CVE-2026-10169 – OUSL-GROUP-BrinaryBrains School Student Management System Forgot Password Endpoint Login.php ajax_forgot_password password recovery