CNNVD-202508-2812 Information

CNNVD ID

CNNVD-202508-2812

Related CVE

CVE-2025-9259

• CNNVD Published: 2025-08-22

Description (Chinese)

WebITR是中国台湾WebITR公司的一款差勤系统。 WebITR存在安全漏洞，该漏洞源于容易受到绝对路径遍历攻击，可能导致远程攻击者下载任意系统文件。

Description (English)

WebITR is a travel system of WebITr, Taiwan, China. WebITR has a security loophole, which stems from its vulnerability to absolute routing, which may result in remote attackers downloading random system files.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

WebITR

Published

2025-08-22

Last Modified

2026-02-24

References

https://www.twcert.org.tw/tw/cp-132-10328-dbc35-1.html https://www.twcert.org.tw/en/cp-139-10329-a1c5d-2.html https://nvd.nist.gov/vuln/detail/CVE-2025-9259