Security Advisory

CVE-2025-15226

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-29 06:39:27
Last updated 2025-12-29 14:34:29
Assigner twcert
State PUBLISHED

Description

WMPro developed by Sunnet has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.