CVE-2025-31338
Wisdom Master Pro - Missing Authorization
A missing authorization vulnerability in the retrieve teacher Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to obtain partial user data by accessing the API functionality.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
Affected products
SUNNET Technology Co., Ltd. · Wisdom Master ProWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://zuso.ai/advisory/za-2025-01