Uniong Webitr
11 CVEs affecting Uniong Webitr. Latest disclosed: 2025-11-28. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-9254 | Critical | 9.8 | 2025-08-22 | WebITR developed by Uniong has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to log into the system as arbitrary users by e… |
CVE-2025-13768 | High | 7.5 | 2025-11-28 | WebITR developed by Uniong has an Authentication Bypass vulnerability, allowing authenticated remote attackers to log into the system as any user by modifying… |
CVE-2025-9255 | High | 7.5 | 2025-08-22 | WebITR developed by Uniong has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database conte… |
CVE-2025-13771 | Medium | 6.5 | 2025-11-28 | WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path Traversal to download arb… |
CVE-2025-13770 | Medium | 6.5 | 2025-11-28 | WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database content… |
CVE-2025-13769 | Medium | 6.5 | 2025-11-28 | WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database content… |
CVE-2025-9259 | Medium | 6.5 | 2025-08-22 | WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to… |
CVE-2025-9258 | Medium | 6.5 | 2025-08-22 | WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to… |
CVE-2025-9257 | Medium | 6.5 | 2025-08-22 | WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to… |
CVE-2025-9256 | Medium | 6.5 | 2025-08-22 | WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to… |
CVE-2024-8586 | Medium | 6.1 | 2024-09-09 | WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers to exploit this vulnerability to forge URLs. Users, believing… |