Uniong Webitr

11 CVEs affecting Uniong Webitr. Latest disclosed: 2025-11-28. Critical: 1, High: 2.

Top CVEs affecting Uniong Webitr
CVESeverityScorePublishedSummary
CVE-2025-9254Critical9.82025-08-22WebITR developed by Uniong has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to log into the system as arbitrary users by e…
CVE-2025-13768High7.52025-11-28WebITR developed by Uniong has an Authentication Bypass vulnerability, allowing authenticated remote attackers to log into the system as any user by modifying…
CVE-2025-9255High7.52025-08-22WebITR developed by Uniong has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database conte…
CVE-2025-13771Medium6.52025-11-28WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path Traversal to download arb…
CVE-2025-13770Medium6.52025-11-28WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database content…
CVE-2025-13769Medium6.52025-11-28WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database content…
CVE-2025-9259Medium6.52025-08-22WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to…
CVE-2025-9258Medium6.52025-08-22WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to…
CVE-2025-9257Medium6.52025-08-22WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to…
CVE-2025-9256Medium6.52025-08-22WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to…
CVE-2024-8586Medium6.12024-09-09WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers to exploit this vulnerability to forge URLs. Users, believing…