CVE-2025-9254

WebITR developed by Uniong has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to log into the system as arbitrary users by exploiting a specific functionality.

More information : https://www.twcert.org.tw/en/cp-139-10329-a1c5d-2.html