Bdtask Pharmacy Management System CVE-2025-12288
LOWSeverity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
1DescriptionCVE.org
A vulnerability was detected in Bdtask Pharmacy Management System up to 9.4. Affected is an unknown function of the file /user/edit_user/ of the component User Profile Handler. Performing manipulation results in authorization bypass. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
AnalysisAI
Authorization bypass in Bdtask Pharmacy Management System up to version 9.4 allows authenticated remote attackers to manipulate user profile data via the /user/edit_user/ endpoint, escalating privileges or modifying other users' accounts without proper access controls. The vulnerability has publicly available exploit code and affects the User Profile Handler component, though vendor response to disclosure has been absent.
Technical ContextAI
The vulnerability exists in the User Profile Handler component, specifically the /user/edit_user/ file endpoint. CWE-285 (Improper Authorization) indicates the application fails to properly enforce access control checks when processing user profile edit requests. Authenticated users can bypass authorization restrictions to manipulate user data, suggesting insufficient validation of user permissions before executing profile modification operations. The attack vector is network-based (AV:N) with low attack complexity (AC:L), meaning exploitation requires only network access and standard HTTP requests without requiring special configuration or timing.
RemediationAI
No vendor-released patch has been identified at time of analysis, as the vendor did not respond to early disclosure contact. Organizations using Bdtask Pharmacy Management System should implement the following compensating controls: (1) Restrict network access to the /user/edit_user/ endpoint using a WAF (Web Application Firewall) or API gateway, allowing requests only from trusted internal networks; (2) Implement strict role-based access control (RBAC) validation at the application layer to verify user permissions before executing profile modifications - consider adding server-side session validation to ensure the authenticated user has explicit permission to edit the target user's profile; (3) Enable comprehensive audit logging on all user profile modifications to detect unauthorized changes and facilitate incident investigation; (4) Consider upgrading to a successor version (beyond 9.4) if available from the vendor, or evaluate alternative pharmacy management systems with active security support. Monitor Bdtask's GitHub or official channels for eventual patch releases. Given the low EPSS score and authentication requirement, this remediation should be prioritized below network segmentation and multi-factor authentication deployments.
Share
External POC / Exploit Code
Leaving vuln.today