CVE-2025-40679

Publication date

2026-01-20 11:53:39

Family

INCIBE

State

PUBLISHED

Description

HTML Injection vulnerability in Isshue by Bdtask, consisting os an HTML injection due to a lack os proper validation of user input by sending a POST request to /category_product_search, affecting the product_name parameter.