VYPR

OpenWGA

by OpenWGA

CVEs (2)

  • CVE-2025-12250MedOct 27, 2025
    risk 0.31cvss 4.7epss 0.00

    A flaw has been found in OpenWGA 7.11.12 Build 737. This affects an unknown function of the file WGA.File of the component TMLScript API. Executing manipulation can lead to path traversal. It is possible to launch the attack remotely. The exploit has been published and may be…

  • CVE-2025-12251LowOct 27, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability has been found in OpenWGA 7.11.12 Build 737. This impacts an unknown function of the component Admin UI. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor…