| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-15226 | Sunnet|WMPro - Arbitrary File Upload | Sunnet | WMPro | Critical | 9.8 | 2025-12-29 06:39:27 | Deep Dive |
| CVE-2025-15225 | Sunnet|WMPro - Arbitrary File Read | Sunnet | WMPro | High | 7.5 | 2025-12-29 06:31:49 | Deep Dive |
| CVE-2025-9570 | Sunnet|eHRD CTMS - Arbitrary File Reading through Path Traversal | Sunnet | eHRD CTMS | Medium | 4.9 | 2025-09-01 02:46:40 | Deep Dive |
| CVE-2025-9569 | Sunnet|eHRD CTMS - Reflected Cross-site Scripting | Sunnet | eHRD CTMS | Medium | 6.1 | 2025-09-01 02:42:49 | Deep Dive |
| CVE-2025-9568 | Sunnet|eHRD CTMS - Reflected Cross-site Scripting | Sunnet | eHRD CTMS | Medium | 6.1 | 2025-09-01 02:40:34 | Deep Dive |
| CVE-2025-9567 | Sunnet|eHRD CTMS - Reflected Cross-site Scripting | Sunnet | eHRD CTMS | Medium | 6.1 | 2025-09-01 02:32:27 | Deep Dive |
| CVE-2025-54946 | SUNNET Corporate Training Management System - SQL Injection | SUNNET Technology Co., Ltd. | Corporate Training Management System | 中危 | - | 2025-08-30 03:58:59 | Deep Dive |
| CVE-2025-54945 | SUNNET Corporate Training Management System - External Control of File Name or Path | SUNNET Technology Co., Ltd. | Corporate Training Management System | 中危 | - | 2025-08-30 03:50:55 | Deep Dive |
| CVE-2025-54944 | SUNNET Corporate Training Management System - Unrestricted Upload of File with Dangerous Type | SUNNET Technology Co., Ltd. | Corporate Training Management System | 中危 | - | 2025-08-30 03:45:59 | Deep Dive |
| CVE-2025-54943 | SUNNET Corporate Training Management System - Missing Authorization | SUNNET Technology Co., Ltd. | Corporate Training Management System | 中危 | - | 2025-08-30 03:42:00 | Deep Dive |
| CVE-2025-54942 | SUNNET Corporate Training Management System - Missing Authentication for Critical Function | SUNNET Technology Co., Ltd. | Corporate Training Management System | 中危 | - | 2025-08-30 03:37:02 | Deep Dive |
| CVE-2025-3707 | Sunnet eHRD CTMS - SQL Injection | Sunnet | eHRD CTMS | Medium | 6.5 | 2025-05-02 02:50:33 | Deep Dive |
| CVE-2025-31338 | Wisdom Master Pro - Missing Authorization | SUNNET Technology Co., Ltd. | Wisdom Master Pro | - | - | 2025-04-17 02:01:46 | Deep Dive |
| CVE-2025-31339 | Wisdom Master Pro - Unrestricted Upload of File with Dangerous Type | SUNNET Technology Co., Ltd. | Wisdom Master Pro | - | - | 2025-04-17 02:00:48 | Deep Dive |
| CVE-2025-31340 | Wisdom Master Pro - Improper Control of Filename for Include/Require Statement in PHP Program | SUNNET Technology Co., Ltd. | Wisdom Master Pro | - | - | 2025-04-17 01:59:57 | Deep Dive |
| CVE-2024-11984 | SUNNET Corporate Training Management System - Unrestricted Upload of File with Dangerous Type | SUNNET Technology Co., Ltd. | Corporate Training Management System | 超危 | - | 2024-12-19 04:01:06 | Deep Dive |
| CVE-2024-10440 | Sunnet eHRD CTMS - SQL Injection | Sunnet | eHRD CTMS | Critical | 9.8 | 2024-10-28 02:53:01 | Deep Dive |
| CVE-2024-10439 | Sunnet eHRD CTMS - Insecure Direct Object Reference | Sunnet | eHRD CTMS | Medium | 5.3 | 2024-10-28 02:49:35 | Deep Dive |
| CVE-2024-10438 | Sunnet eHRD CTMS - Authentication Bypass | Sunnet | eHRD CTMS | High | 7.5 | 2024-10-28 02:46:33 | Deep Dive |
| CVE-2023-35851 | SUNNET WMPro - SQL Injection | SUNNET | WMPro | High | 7.5 | 2023-09-18 02:34:00 | Deep Dive |