Design/Logic Flaw

2023-09-1803:15:00

PRIOn knowledge base

www.prio-n.com

sunnet

wmpro

portal

file management

vulnerability

insufficient filtering

user input

remote attacker

administrator privilege

privileged account

arbitrary system commands

system operations

disrupt service

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.5%

JSON

SUNNET WMPro portal’s file management function has a vulnerability of insufficient filtering for user input. A remote attacker with administrator privilege or a privileged account can exploit this vulnerability to inject and execute arbitrary system commands to perform arbitrary system operations or disrupt service.