Skip to main content

Wmpro

3 CVEs product

Monthly

CVE-2023-35851 HIGH This Week

SUNNET WMPro portal's FAQ function has insufficient validation for user input. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Wmpro
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-35850 HIGH This Week

SUNNET WMPro portal's file management function has a vulnerability of insufficient filtering for user input. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Wmpro
NVD
CVSS 3.1
7.2
EPSS
0.7%
CVE-2019-11062 CRITICAL POC Act Now

The SUNNET WMPro v5.0 and v5.1 for eLearning system has OS Command Injection via "/teach/course/doajaxfileupload.php". Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Wmpro
NVD GitHub
CVSS 3.1
9.8
EPSS
5.7%
EPSS 1% CVSS 7.5
HIGH This Week

SUNNET WMPro portal's FAQ function has insufficient validation for user input. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Wmpro
NVD
EPSS 1% CVSS 7.2
HIGH This Week

SUNNET WMPro portal's file management function has a vulnerability of insufficient filtering for user input. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Wmpro
NVD
EPSS 6% CVSS 9.8
CRITICAL POC Act Now

The SUNNET WMPro v5.0 and v5.1 for eLearning system has OS Command Injection via "/teach/course/doajaxfileupload.php". Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Wmpro
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy