PT-2025-16927 · Unknown · Wisdom Master Pro
Kuang Ming Chang
·
Publicado
2025-04-17
·
Atualizado
2025-04-17
·
CVE-2025-31339
CVSS v4.0
5.3
Média
| Vetor | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Wisdom Master Pro versions 5.0 through 5.2
Description
An unrestricted upload of file with dangerous type vulnerability in the course management function allows remote authenticated users to craft a malicious file.
Recommendations
For Wisdom Master Pro versions 5.0 through 5.2, consider disabling the file upload feature in the course management function until a patch is available. Restrict access to the course management function to minimize the risk of exploitation. Avoid using the file upload feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Unrestricted File Upload
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Wisdom Master Pro