PT-2025-16927 · Unknown · Wisdom Master Pro
Kuang Ming Chang
·
Published
2025-04-17
·
Updated
2025-04-17
·
CVE-2025-31339
CVSS v4.0
5.3
Medium
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Wisdom Master Pro versions 5.0 through 5.2
Description
An unrestricted upload of file with dangerous type vulnerability in the course management function allows remote authenticated users to craft a malicious file.
Recommendations
For Wisdom Master Pro versions 5.0 through 5.2, consider disabling the file upload feature in the course management function until a patch is available. Restrict access to the course management function to minimize the risk of exploitation. Avoid using the file upload feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wisdom Master Pro