CNNVD-202512-4997 Information

CNNVD ID

CNNVD-202512-4997

Related CVE

CVE-2025-15226

• CNNVD Published: 2025-12-29

Description (Chinese)

SUNNET WMPro是中国台湾旭联科技（SUNNET）公司的一套线上学习平台。 SUNNET WMPro存在代码问题漏洞，该漏洞源于存在任意文件上传漏洞，可能导致未经验证的远程攻击者上传和执行Web Shell后门，从而在服务器上执行任意代码。

Description (English)

SUNNET WMPro is an online learning platform for SUNNET. SUNNET WMPro has a code loophole, which stems from the existence of any file upload loophole, which could lead to unverified remote assailants uploading and implementing Web Shell’s back door, thus enforcing any code on the server.

Hazard Level

Low

Vulnerability Type

代码问题

Affected Vendor

旭联科技

Published

2025-12-29

Last Modified

2026-02-24

References

https://www.twcert.org.tw/en/cp-139-10603-67149-2.html https://www.twcert.org.tw/tw/cp-132-10602-c1c69-1.html