关键漏洞信息 CVE ID: CVE-2025-13786 Vulnerability Type: Code Injection CVSS Meta Temp Score: 6.9 Current Exploit Price: $0-$5k CTI Interest Score: 1.22 Summary A critical vulnerability was found in taosir WTCMS up to version 01a5f68a3dfc2fdddb44eed967bb2d4f60487665. The vulnerability affects the function in the file. Manipulating the argument can lead to code injection. The attack can be launched remotely, and an exploit is available. Details The vulnerability impacts the function in . Unsanitized user input in the argument can result in code injection. CWE Definition: CWE-94 - Code Injection. The vulnerability affects confidentiality, integrity, and availability. The vendor was contacted but did not respond.