Wellchoose Single Sign-On Portal System vulnerabilities
3 known vulnerabilities affecting wellchoose/single_sign-on_portal_system.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-1427P2HIGHCVSS 8.8fixed in iftop_p4_181fixed in IFTOP_P4_1812026-01-26
CVE-2026-1427 [HIGH] CWE-78 CVE-2026-1427: Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allow
Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the server.
nvd
CVE-2026-1428P2HIGHCVSS 8.8fixed in iftop_p4_181fixed in IFTOP_P4_1812026-01-26
CVE-2026-1428 [HIGH] CWE-78 CVE-2026-1428: Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allow
Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the server.
nvd
CVE-2026-1429P4MEDIUMCVSS 5.4fixed in iftop_p4_181fixed in IFTOP_P4_1812026-01-26
CVE-2026-1429 [MEDIUM] CWE-79 CVE-2026-1429: Single Sign-On Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerabil
Single Sign-On Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.
nvd