Aggregates CVE and security vulnerability intelligence across all wondershare-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk path handling and related problems; some flaws may lead to vendor impact file overwrite, affecting vendor surface production workloads scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2019-25344 | Wondershare MobileGo 8.5.0 contains an insecure file permissions vulnerability that allows local users to modify executable files in the application directory. Attackers can replace the original MobileGo.exe with a malicious executable to create a new user account and add it to the Administrators group with full system access. | [email protected] | 8.5 | 0.01% | 2026-02-12 | 2026-02-26 |
| CVE-2022-50903 | Wondershare MobileTrans 3.5.9 contains an unquoted service path vulnerability in the ElevationService that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path by placing malicious executables in specific filesystem locations that will be executed with LocalSystem permissions during service startup. | [email protected] | 8.5 | 0.01% | 2026-01-13 | 2026-01-28 |
| CVE-2022-50901 | Wondershare Dr.Fone 11.4.9 contains an unquoted service path vulnerability in the DFWSIDService that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files (x86)\Wondershare\Wondershare Dr.Fone\ to inject malicious executables that would run with LocalSystem privileges. | [email protected] | 8.5 | 0.01% | 2026-01-13 | 2026-01-28 |
| CVE-2022-50900 | Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated system privileges. Attackers can exploit the misconfigured service path to insert malicious code that will be executed with LocalSystem permissions during service startup. | [email protected] | 8.5 | 0.01% | 2026-01-13 | 2026-01-28 |
| CVE-2025-10644 | Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the permissions granted to an SAS token. An attacker can leverage this vulnerability to launch a supply-chain attack and execute arbitrary code on customers' endpoints. Was ZDI-CAN-26892. | [email protected] | 9.4 | 1.56% | 2025-09-17 | 2025-09-19 |
| CVE-2025-10643 | Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the permissions granted to a storage account token. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-26902. | [email protected] | 9.1 | 0.22% | 2025-09-17 | 2025-09-19 |
| CVE-2025-5180 | A vulnerability, which was classified as critical, has been found in Wondershare Filmora 14.5.16. Affected by this issue is some unknown functionality in the library CRYPTBASE.dll of the file NFWCHK.exe of the component Installer. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early a | [email protected] | 7.3 | 0.07% | 2025-05-26 | 2025-06-03 |
| CVE-2020-23438 | Wondershare filmora 9.2.11 is affected by Trojan Dll hijacking leading to privilege escalation. | [email protected] | 7.8 | 0.10% | 2025-03-04 | 2025-03-26 |
| CVE-2024-24122 | A remote code execution vulnerability in the project management of Wanxing Technology's Yitu project which allows an attacker to use the exp.adpx file as a zip compressed file to construct a special file name, which can be used to decompress the project file into the system startup folder, restart the system, and automatically execute the constructed attack script. | [email protected] | 3.3 | 1.05% | 2024-10-02 | 2024-11-21 |
| CVE-2024-26574 | Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to execute arbitrary code via a crafted script to the WSNativePushService.exe | [email protected] | 7.8 | 0.06% | 2024-04-08 | 2025-03-28 |
| CVE-2023-31748 | Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges to local admin via replacing the executable file. | [email protected] | 7.8 | 0.33% | 2023-05-24 | 2025-01-31 |
| CVE-2023-31747 | Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an unquoted service path vulnerability via the component NativePushService. This vulnerability allows attackers to launch processes with elevated privileges. | [email protected] | 7.8 | 1.04% | 2023-05-23 | 2025-01-21 |
| CVE-2023-29835 | Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function. | [email protected] | 7.8 | 0.16% | 2023-04-26 | 2025-02-03 |
| CVE-2023-27771 | An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote attacker to execute arbitrary commands via the wondershareCC_setup_full10819.exe file. | [email protected] | 7.8 | 0.15% | 2023-04-04 | 2025-02-13 |
| CVE-2023-27770 | An issue found in Wondershare Technology Co.,Ltd Edraw-max v.12.0.4 allows a remote attacker to execute arbitrary commands via the edraw-max_setup_full5371.exe file. | [email protected] | 7.8 | 0.37% | 2023-04-04 | 2025-02-13 |
| CVE-2023-27769 | An issue found in Wondershare Technology Co.,Ltd PDF Reader v.1.0.1 allows a remote attacker to execute arbitrary commands via the pdfreader_setup_full13143.exe file. | [email protected] | 7.8 | 0.15% | 2023-04-04 | 2025-02-13 |
| CVE-2023-27768 | An issue found in Wondershare Technology Co.,Ltd PDFelement v9.1.1 allows a remote attacker to execute arbitrary commands via the pdfelement-pro_setup_full5239.exe file. | [email protected] | 7.8 | 0.15% | 2023-04-04 | 2025-02-13 |
| CVE-2023-27767 | An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to execute arbitrary commands via the drfone_setup_full3360.exe file. | [email protected] | 7.8 | 0.15% | 2023-04-04 | 2025-02-13 |
| CVE-2023-27766 | An issue found in Wondershare Technology Co.,Ltd Anireel 1.5.4 allows a remote attacker to execute arbitrary commands via the anireel_setup_full9589.exe file. | [email protected] | 7.8 | 0.15% | 2023-04-04 | 2025-02-13 |
| CVE-2023-27765 | An issue found in Wondershare Technology Co.,Ltd Recoverit v.10.6.3 allows a remote attacker to execute arbitrary commands via the recoverit_setup_full4134.exe file. | [email protected] | 7.8 | 0.15% | 2023-04-04 | 2025-02-13 |