Browse all 8 CVE security advisories affecting Raonwiz. AI-powered Chinese analysis, POCs, and references for each vulnerability.
RAONWiz is a web application framework primarily used for developing enterprise portals and content management systems. Historically, it has been vulnerable to multiple remote code execution (RCE) flaws, cross-site scripting (XSS), and privilege escalation vulnerabilities, with eight CVEs recorded to date. These issues often stem from insufficient input validation and improper access controls. The framework's widespread adoption in Korean government and financial sectors has made it a high-profile target. In 2021, a critical RCE vulnerability (CVE-2021-38314) allowed unauthenticated attackers to execute arbitrary code, leading to widespread exploitation in production environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-7875 | RAONWIZ DEXT5 Upload ActiveX remote file execution vulnerability — DEXT5 UploadCWE-494 | 7.5 | High | 2021-10-28 |
| CVE-2020-7832 | RAONWIZ DEXT5 Upload remote code execution vulnerability — DEXT5 UploadCWE-20 | 8.8 | High | 2021-09-07 |
| CVE-2020-7864 | Raonwiz DEXT5 Editor File upload and Execution vulnerability — DEXT5EditorCWE-434 | 7.8 | High | 2021-06-15 |
| CVE-2020-7830 | RAONWIZ 输入验证错误漏洞 — RAON KUpload | 7.8 | High | 2020-09-02 |
| CVE-2020-7814 | Raonwiz K Upload 注入漏洞 — RAON KUpload | 7.8 | High | 2020-07-10 |
| CVE-2019-19164 | Dext5 Upload ActiveX Arbitrary File Execution Vulnerability — dext.ocx ActiveX Control in Dext5 UploadCWE-20 | 7.8 | High | 2020-05-07 |
| CVE-2019-19168 | Raonwiz Dext5.ocx ActiveX 安全漏洞 — Dext.ocx ActiveX Control in Dext5 Upload | 7.8 | High | 2020-05-06 |
| CVE-2019-19169 | Raonwiz Dext5.ocx ActiveX 安全漏洞 — Dext.ocx ActiveX Control in Dext5 Upload | 7.8 | High | 2020-05-06 |
This page lists every published CVE security advisory associated with Raonwiz. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.