Simopro Technology Winmatrix3 vulnerabilities
3 known vulnerabilities affecting simopro_technology/winmatrix3.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3
Vulnerabilities
Page 1 of 1
CVE-2025-7916P2CRITICALCVSS 9.8≤ 3.8.52.52025-07-21
CVE-2025-7916 [CRITICAL] CWE-502 CVE-2025-7916: WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing u
WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents.
nvd
CVE-2024-7202P2CRITICALCVSS 9.8≤ 1.2.35.32024-07-29
CVE-2024-7202 [CRITICAL] CWE-89 CVE-2024-7202: The query functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation of
The query functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation of user input, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database contents.
nvd
CVE-2024-7201P2CRITICALCVSS 9.8≤ 1.2.33.32024-07-29
CVE-2024-7201 [CRITICAL] CWE-89 CVE-2024-7201: The login functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation of
The login functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation of user input, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database contents.
nvd