24 matches found
EUVD-2025-11525
Malicious code in bioql PyPI...
EUVD-2025-11524
Malicious code in bioql PyPI...
EUVD-2025-11521
Malicious code in bioql PyPI...
CVE-2025-31338
A missing authorization vulnerability in the retrieve teacher Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to obtain partial user data by accessing the API functionality...
CVE-2025-31339
An unrestricted upload of file with dangerous type vulnerability in the course management function of Wisdom Master Pro versions 5.0 through 5.2 allows remote authenticated users to craft a malicious file...
CVE-2025-31340
A improper control of filename for include/require statement in PHP program vulnerability in the retrieve course Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to perform arbitrary system commands by running a malicious file...
CVE-2025-31339
An unrestricted upload of file with dangerous type vulnerability in the course management function of Wisdom Master Pro versions 5.0 through 5.2 allows remote authenticated users to craft a malicious file...
CVE-2025-31340
A improper control of filename for include/require statement in PHP program vulnerability in the retrieve course Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to perform arbitrary system commands by running a malicious file...
CVE-2025-31338
A missing authorization vulnerability in the retrieve teacher Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to obtain partial user data by accessing the API functionality...
CVE-2025-31338 Wisdom Master Pro - Missing Authorization
A missing authorization vulnerability in the retrieve teacher Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to obtain partial user data by accessing the API functionality...
CVE-2025-31338
Wisdom Master Pro (versions 5.0–5.2) exposes a missing authorization vulnerability in the retrieve teacher Information API, allowing remote attackers to read partial user data. Affected component is the retrieve teacher Information function; root cause is lack of authorization checks, as describe...
CVE-2025-31338 Wisdom Master Pro - Missing Authorization
A missing authorization vulnerability in the retrieve teacher Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to obtain partial user data by accessing the API functionality...
CVE-2025-31339
Wisdom Master Pro (versions 5.0–5.2) has an unrestricted upload of a file with a dangerous type in the course management function, allowing remote authenticated users to craft a malicious file. The issue is described across multiple sources (e.g., Red Hat, NVD, CVE listing, PT-Security) with no p...
CVE-2025-31339 Wisdom Master Pro - Unrestricted Upload of File with Dangerous Type
An unrestricted upload of file with dangerous type vulnerability in the course management function of Wisdom Master Pro versions 5.0 through 5.2 allows remote authenticated users to craft a malicious file...
CVE-2025-31339 Wisdom Master Pro - Unrestricted Upload of File with Dangerous Type
An unrestricted upload of file with dangerous type vulnerability in the course management function of Wisdom Master Pro versions 5.0 through 5.2 allows remote authenticated users to craft a malicious file...
CVE-2025-31340 Wisdom Master Pro - Improper Control of Filename for Include/Require Statement in PHP Program
A improper control of filename for include/require statement in PHP program vulnerability in the retrieve course Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to perform arbitrary system commands by running a malicious file...
CVE-2025-31340
Wisdom Master Pro, versions 5.0–5.2, is affected by CVE-2025-31340 due to improper control of included/required filenames in the retrieve course Information PHP function. This allows remote execution of arbitrary system commands via a malicious file. Root cause: insecure include/require filename ...
CVE-2025-31340 Wisdom Master Pro - Improper Control of Filename for Include/Require Statement in PHP Program
A improper control of filename for include/require statement in PHP program vulnerability in the retrieve course Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to perform arbitrary system commands by running a malicious file...
SUNNET Wisdom Master Pro 安全漏洞
SUNNET Wisdom Master Pro is a Wisdom Master management platform from SUNNET. A security vulnerability exists in SUNNET Wisdom Master Pro 5.2 and earlier versions, which stems from a lack of authorization and could lead to a remote attacker obtaining some user data...
SUNNET Wisdom Master Pro 安全漏洞
SUNNET Wisdom Master Pro is a Wisdom Master management platform from SUNNET. A security vulnerability exists in SUNNET Wisdom Master Pro version 5.2 and prior versions, which stems from a course management feature that allows uploading of dangerous types of files, which could lead to the uploadin...