VYPR
Vendor

WeiPHP

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2020-20300CriDec 18, 2020
    risk 0.64cvss 9.8epss 0.09

    SQL injection vulnerability in the wp_where function in WeiPHP 5.0.

  • CVE-2025-55849HigSep 8, 2025
    risk 0.55cvss 8.4epss 0.00

    WeiPHP v5.0 and before is vulnerable to SQL Injection via the SucaiController.class.php file and the cancelTemplatee

  • CVE-2025-34045HigJun 26, 2025
    risk 0.49cvss 7.5epss 0.04

    A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/_download_imgage endpoint,…

  • CVE-2020-20299HigDec 18, 2020
    risk 0.49cvss 7.5epss 0.01

    WeiPHP 5.0 does not properly restrict access to pages, related to using POST.