Every CVE whose affected-product data names Uniong Webitr, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2025-9254 — CVSS 9.8 (critical): WebITR developed by Uniong has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to log into the system as…
CVE-2025-13768 — CVSS 7.5 (high): WebITR developed by Uniong has an Authentication Bypass vulnerability, allowing authenticated remote attackers to log into the system as…
CVE-2025-9255 — CVSS 7.5 (high): WebITR developed by Uniong has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to…
CVE-2025-13771 — CVSS 6.5 (medium): WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path…
CVE-2025-9256 — CVSS 6.5 (medium): WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit…
CVE-2025-9257 — CVSS 6.5 (medium): WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit…
CVE-2025-9258 — CVSS 6.5 (medium): WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit…
CVE-2025-9259 — CVSS 6.5 (medium): WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit…
CVE-2025-13769 — CVSS 6.5 (medium): WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to…
CVE-2025-13770 — CVSS 6.5 (medium): WebITR developed by Uniong has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to…
CVE-2024-8586 — CVSS 6.1 (medium): WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers to exploit this vulnerability to forge…