CVE-2025-13239 | Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution /submit_checkout behavioral workflow

A vulnerability categorized as critical has been discovered in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution 5. Affected by this issue is some unknown functionality of the file /submit_checkout. Such manipulation of the argument order_total_amount/cart_total_amount leads to enforcement of behavioral workflow.

This vulnerability is traded as CVE-2025-13239. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-13239 | Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution /submit_checkout behavioral workflow

Post correlati

CVE-2023-43517 | Qualcomm QAM8255P Automotive Multimedia memory corruption

CVE-2024-8280 | Lenovo HX5530 Appliance XCC os command injection

CVE-2025-0297 | code-projects Online Book Shop 1.0 /detail.php id sql injection

CVE-2020-8006 | Circontrol Raption up to 5.11.2 HTTP Header stack-based overflow