Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Administrative_management_system
(Wellchoose)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-10-21 | CVE-2024-10200 | Administrative Management System from Wellchoose has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to download arbitrary files on the server. | Administrative_management_system | 7.5 | ||
| 2024-10-21 | CVE-2024-10201 | Administrative Management System from Wellchoose does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells. | Administrative_management_system | 8.8 | ||
| 2024-10-21 | CVE-2024-10202 | Administrative Management System from Wellchoose has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands. | Administrative_management_system | 8.8 |