Vulnerabilities and security researches forbidorbuystoreintegrator bidorbuystoreintegrator

Jan 28, 2026

CVE, Research URL: CVE-2025-68883
Home page URL: Security reports for bidorbuy Store Integrator
Application: bidorbuy Store Integrator
Date: Jan 22, 2026
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in extremeidea bidorbuy Store Integrator bidorbuystoreintegrator allows Reflected XSS.This issue affects bidorbuy Store Integrator: from n/a through <= 2.12.0.
Affected versions: max 2.12.0.
Status: vulnerable

Aug 29, 2025

CVE, Research URL: CVE-2025-48100
Home page URL: Security reports for bidorbuy Store Integrator
Application: bidorbuy Store Integrator
Date: Aug 28, 2025
Research Description: Improper Control of Generation of Code ('Code Injection') vulnerability in extremeidea bidorbuy Store Integrator allows Remote Code Inclusion. This issue affects bidorbuy Store Integrator: from n/a through 2.12.0.
Affected versions: max 2.12.0.
Status: vulnerable