CVE-2025-8702 – Wanzhou WOES Intelligent Optimization Energy Saving System SQL Injection Vulnerability

CVE ID : CVE-2025-8702

Published : Aug. 8, 2025, 12:15 a.m. | 16 minutes ago

Description : A vulnerability classified as critical has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. This affects an unknown part of the file /CommonSolution/GetVariableByOneIDNew of the component Historical Data Query Module. The manipulation of the argument ObjectID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…