Unrated severityNVD Advisory· Published Dec 29, 2025· Updated Dec 29, 2025
Sunnet|WMPro - Arbitrary File Upload
CVE-2025-15226
Description
WMPro developed by Sunnet has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
Affected products
2- Sunnet/WMProv5Range: 5.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.twcert.org.tw/en/cp-139-10603-67149-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-10602-c1c69-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.