Wellchoose Organization_portal_system
9 CVEs affecting Wellchoose Organization_portal_system. Latest disclosed: 2026-03-11. Critical: 2, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-3826 | Critical | 9.8 | 2026-03-11 | IFTOP developed by WellChoose has a Local File Inclusion vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server. |
CVE-2025-8913 | Critical | 9.8 | 2025-08-13 | Organization Portal System developed by WellChoose has a Local File Inclusion vulnerability, allowing unauthenticated remote attackers to execute arbitrary cod… |
CVE-2025-8912 | High | 7.5 | 2025-08-13 | Organization Portal System developed by WellChoose has an Arbitrary File Reading vulnerability, allowing unauthenticated remote attackers to exploit Absolute P… |
CVE-2025-8914 | Medium | 6.5 | 2025-08-13 | Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL command… |
CVE-2025-8909 | Medium | 6.5 | 2025-08-13 | Organization Portal System developed by WellChoose has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Ab… |
CVE-2026-3825 | Medium | 6.1 | 2026-03-11 | IFTOP developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes… |
CVE-2026-3824 | Medium | 6.1 | 2026-03-11 | IFTOP developed by WellChoose has an Open redirect vulnerability, allowing authenticated remote attackers to craft a URL that tricks users into visiting malici… |
CVE-2025-8911 | Medium | 6.1 | 2025-08-13 | Organization Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arb… |
CVE-2025-8910 | Medium | 6.1 | 2025-08-13 | Organization Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arb… |