Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution submit

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A security vulnerability has been detected in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution 5. Affected by this issue is some unknown functionality of the file /submit_checkout. Such manipulation of the argument order_total_amount/cart_total_amount leads to enforcement of behavioral workflow. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2025-13239

Source VulDB

Published Nov 16, 2025 at 06:02

Affected Product

Vendor Bdtask

Product Isshue Multi Store eCommerce Shopping Cart Solution

Version 5

Affected Versions Bdtask Isshue Multi Store eCommerce Shopping Cart Solution 5
CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution 5

CWE Classification

CWE-841 CWE-840

References

{
    "lastseen": "",
    "description": "A security vulnerability has been detected in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution 5. Affected by this issue is some unknown functionality of the file /submit_checkout. Such manipulation of the argument order_total_amount/cart_total_amount leads to enforcement of behavioral workflow. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-11-16T06:02:05.740Z",
    "modified": "2025-11-16T06:02:05.740Z",
    "type": "cve",
    "title": "Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution submit_checkout behavioral workflow",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.332565\nhttps://vuldb.com/?ctiid.332565\nhttps://vuldb.com/?submit.686896\nhttps://github.com/4m3rr0r/PoCVulDb/issues/7",
    "id": "CVE-2025-13239",
    "bulletinFamily": "",
    "cwe": [
        "CWE-841",
        "CWE-840"
    ],
    "cvelist": null,
    "sourceData": "Bdtask Isshue Multi Store eCommerce Shopping Cart Solution 5\nCodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution 5",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Isshue Multi Store eCommerce Shopping Cart Solution",
    "version": "5",
    "vendor": "Bdtask",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution submit_checkout behavioral workflow_CVE-2025-13239