WBCE_CMS — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in WBCE_CMS, with AI-generated Chinese analysis, references, and POCs.

Vendor: WBCE

CVE ID	Title	CVSS	Severity	Published
CVE-2025-65950	WBCE CMS is Vulnerable to Time-Based Blind SQL Injection through groups[] Parameter CWE-89	8.8^AI	High^AI	2025-12-10
CVE-2025-67504	WBCE CMS has Weak Random Number Generator in Password Generation Function CWE-331	9.1	Critical	2025-12-09
CVE-2025-66204	WBCE CMS allows brute-force protection bypass using X-Forwarded-For header CWE-307	9.1^AI	Critical^AI	2025-12-08
CVE-2025-65094	WBCE CMS is Vulnerable to Privilege Escalation via Group ID Manipulation (IDOR) CWE-266	8.8^AI	High^AI	2025-11-19

All 4 known CVE vulnerabilities affecting WBCE_CMS with full Chinese analysis, references, and POCs where available.