Lucene search
K

51 matches found

Cvelist
Cvelist
added 2025/07/21 6:59 a.m.9 views

CVE-2025-7920 Simopro Technology|WinMatrix3 Web package - Reflected Cross-Site Scripting

WinMatrix3 Web package developed by Simopro Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...

6.1CVSS0.00301EPSS
Exploits0References2
CVE
CVE
added 2025/07/21 6:59 a.m.14 views

CVE-2025-7920

CVE-2025-7920 describes a reflected Cross-site Scripting vulnerability in the WinMatrix3 Web package from Simopro Technology. The issue arises from lack of proper filtering/escaping of user-supplied data, enabling unauthenticated attackers to induce a user to execute arbitrary JavaScript in the b...

6.1CVSS6.9AI score0.00301EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/21 6:16 a.m.3 views

CVE-2025-7919 Simopro Technology|WinMatrix3 Web package - SQL Injection

WinMatrix3 Web package developed by Simopro Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

7.1CVSS7.9AI score0.00422EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/21 6:16 a.m.8 views

CVE-2025-7919 Simopro Technology|WinMatrix3 Web package - SQL Injection

WinMatrix3 Web package developed by Simopro Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

7.1CVSS0.00422EPSS
Exploits0References2
CVE
CVE
added 2025/07/21 6:16 a.m.24 views

CVE-2025-7919

CVE-2025-7919 relates to the WinMatrix3 Web package from Simopro Technology, which is affected by an SQL Injection vulnerability. The vulnerability allows unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents. Connected sources provide CVS...

7.1CVSS8AI score0.00422EPSS
Exploits0References2
NVD
NVD
added 2025/07/21 6:15 a.m.19 views

CVE-2025-7918

WinMatrix3 Web package developed by Simopro Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

9.8CVSS0.0043EPSS
Exploits0References2
NVD
NVD
added 2025/07/21 6:15 a.m.29 views

CVE-2025-7917

WinMatrix3 Web package developed by Simopro Technology has an Arbitrary File Upload vulnerability, allowing remote attackers with administrator privileges to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS0.00547EPSS
Exploits0References2
NVD
NVD
added 2025/07/21 6:15 a.m.24 views

CVE-2025-7916

WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents...

9.8CVSS0.00771EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/21 6:12 a.m.15 views

CVE-2025-7918 Simopro Technology|WinMatrix3 Web package - SQL Injection

WinMatrix3 Web package developed by Simopro Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

9.8CVSS0.0043EPSS
Exploits0References2
CVE
CVE
added 2025/07/21 6:12 a.m.21 views

CVE-2025-7918

WinMatrix3 Web package from Simopro Technology is affected by a SQL Injection vulnerability. The root cause is lack of input validation that allows unauthenticated attackers to inject SQL to read, modify, and delete database content. Affected component: WinMatrix3 Web package; impact includes hig...

9.8CVSS8AI score0.0043EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/21 6:12 a.m.9 views

CVE-2025-7918 Simopro Technology|WinMatrix3 Web package - SQL Injection

WinMatrix3 Web package developed by Simopro Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

9.8CVSS7.9AI score0.0043EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/21 6:8 a.m.26 views

CVE-2025-7917 Simopro Technology|WinMatrix3 Web package - Arbitrary File Upload

WinMatrix3 Web package developed by Simopro Technology has an Arbitrary File Upload vulnerability, allowing remote attackers with administrator privileges to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS0.00547EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/21 6:8 a.m.3 views

CVE-2025-7917 Simopro Technology|WinMatrix3 Web package - Arbitrary File Upload

WinMatrix3 Web package developed by Simopro Technology has an Arbitrary File Upload vulnerability, allowing remote attackers with administrator privileges to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS7.6AI score0.00547EPSS
Exploits0References2
CVE
CVE
added 2025/07/21 6:8 a.m.16 views

CVE-2025-7917

CVE-2025-7917 concerns the WinMatrix3 Web package from Simopro Technology. The connected sources describe an Arbitrary File Upload vulnerability in WinMatrix3 Web, enabling remote attackers with administrator privileges to upload and execute web shell backdoors, resulting in arbitrary code execut...

8.6CVSS7.7AI score0.00547EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/21 5:57 a.m.3 views

CVE-2025-7916 Simopro Technology|WinMatrix3 - Insecure Deserialization

WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents...

9.8CVSS8.4AI score0.00771EPSS
Exploits0References2
CVE
CVE
added 2025/07/21 5:57 a.m.18 views

CVE-2025-7916

WinMatrix3 by Simopro Technology is affected by CVE-2025-7916: an insecure deserialization vulnerability that allows unauthenticated remote code execution via crafted serialized content. The issue stems from unsafe deserialization within the server component, enabling arbitrary code execution on ...

9.8CVSS7.8AI score0.00771EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/21 5:57 a.m.22 views

CVE-2025-7916 Simopro Technology|WinMatrix3 - Insecure Deserialization

WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents...

9.8CVSS0.00771EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.6 views

PT-2025-30229 · Simopro Technology · Winmatrix3

Name of the Vulnerable Software and Affected Versions: WinMatrix3 affected versions not specified Description: WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability. This allows unauthenticated remote attackers to execute arbitrary code on the server by sending...

9.8CVSS7.4AI score0.00771EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.8 views

PT-2025-30231

Name of the Vulnerable Software and Affected Versions WinMatrix3 Web package versions affected versions not specified Description WinMatrix3 Web package developed by Simopro Technology contains a SQL Injection vulnerability. This allows unauthenticated remote attackers to inject arbitrary SQL...

9.8CVSS7.6AI score0.0043EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.7 views

PT-2025-30230 · Simopro Technology · Winmatrix3 Web

Name of the Vulnerable Software and Affected Versions: WinMatrix3 Web package versions affected versions not specified Description: The WinMatrix3 Web package developed by Simopro Technology contains an arbitrary file upload issue. This allows remote attackers with administrator privileges to...

8.6CVSS7.3AI score0.00547EPSS
Exploits0References8
Rows per page
Query Builder