Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

76 matches found

RedhatCVE
RedhatCVEadded 2025/10/17 5:39 p.m.4 views

CVE-2025-62586

OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0...

9.8CVSS7AI score0.00657EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/16 6:30 p.m.2 views

EUVD-2025-34792

OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0...

9.8CVSS6.4AI score0.00657EPSS
Exploits0References4
OSV
OSVadded 2025/10/16 6:15 p.m.3 views

CVE-2025-62586

OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0...

9.3CVSS5.8AI score0.00657EPSS
Exploits0References3
NVD
NVDadded 2025/10/16 6:15 p.m.9 views

CVE-2025-62586

OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0...

9.8CVSS0.00657EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/10/16 5:20 p.m.5 views

CVE-2025-62586 OPEXUS FOIAXpress unauthenticated administrator password reset

OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0...

9.8CVSS6.6AI score0.00657EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/10/16 5:20 p.m.9 views

CVE-2025-62586 OPEXUS FOIAXpress unauthenticated administrator password reset

OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0...

9.8CVSS0.00657EPSS
Exploits0References3
CVE
CVEadded 2025/10/16 5:20 p.m.16 views

CVE-2025-62586

OPEXUS FOIAXpress contains a vulnerability that allows a remote, unauthenticated attacker to reset the administrator password. The issue affects FOIAXpress prior to version 11.13.2.0 and can lead to full administrative access on the affected system. The vulnerability has been fixed in FOIAXpress ...

9.8CVSS6.6AI score0.00657EPSS
Exploits0References3Affected Software1
ICS
ICSadded 2025/10/16 4:43 p.m.4 views

OPEXUS FOIAXpress unauthenticated administrator password reset

RISK EVALUATION OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password and gain full administrative access to a vulnerable system. 2. RECOMMENDED PRACTICES Update to FOIAXpress version 11.13.2.0 or later. 3. DESCRIPTION OPEXUS FOIAXpress allows a remote,...

9.8CVSS6.9AI score0.00657EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/10/16 12:0 a.m.3 views

OPEXUS FOIAXpress 安全漏洞

OPEXUS FOIAXpress is an information disclosure management software from OPEXUS Corporation. A security vulnerability exists in OPEXUS FOIAXpress versions prior to 11.13.2.0 that originates from a remote unauthenticated attacker who can reset the administrator password...

9.8CVSS6.3AI score0.00657EPSS
Exploits0References3
OSV
OSVadded 2025/10/08 12:15 a.m.4 views

CVE-2025-61997

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Enterprise Banner image upload field. Injected content is executed in the context of other users when they generate an Annual Report. Successful exploitation allows the...

4.8CVSS5.8AI score0.0022EPSS
Exploits0References3
OSV
OSVadded 2025/10/08 12:15 a.m.4 views

CVE-2025-61999

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other content embedded in an SVG image used as a logo. Injected content is executed in the context of other users when they view affected pages. Successful exploitation allows the administrative user to perfo...

4.8CVSS5.8AI score0.0022EPSS
Exploits0References3
NVD
NVDadded 2025/10/08 12:15 a.m.9 views

CVE-2025-61998

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content as a URL within the Technical Support Hyperlink Manager. Injected content is executed in the context of other users when they click the malicious link. Successful exploitation allows the...

4.8CVSS0.0022EPSS
Exploits0References3
NVD
NVDadded 2025/10/08 12:15 a.m.4 views

CVE-2025-61999

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other content embedded in an SVG image used as a logo. Injected content is executed in the context of other users when they view affected pages. Successful exploitation allows the administrative user to perfo...

4.8CVSS0.0022EPSS
Exploits0References3
OSV
OSVadded 2025/10/08 12:15 a.m.4 views

CVE-2025-61996

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Template. Injected content is executed in the context of other users when they generate an Annual Report. Successful exploitation allows the administrative user to perfo...

4.8CVSS5.8AI score0.0022EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/10/08 12:0 a.m.3 views

OPEXUS FOIAXpress 安全漏洞

OPEXUS FOIAXpress is an information disclosure management software from OPEXUS Corporation. A security vulnerability exists in OPEXUS FOIAXpress prior to version 11.13.3.0 that originates from an administrator user being able to inject JavaScript or other content into the Annual Report Corporate...

4.8CVSS5.6AI score0.0022EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/10/08 12:0 a.m.4 views

OPEXUS FOIAXpress 安全漏洞

OPEXUS FOIAXpress is an information disclosure management software from OPEXUS USA. A security vulnerability exists in OPEXUS FOIAXpress versions prior to 11.13.3.0, which stems from allowing administrative users to upload SVG images embedded with JavaScript or other content, which could lead to...

4.8CVSS5.7AI score0.0022EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/10/08 12:0 a.m.3 views

OPEXUS FOIAXpress 安全漏洞

OPEXUS FOIAXpress is an information disclosure management software from OPEXUS Corporation. A security vulnerability exists in OPEXUS FOIAXpress versions prior to 11.13.3.0 that originates from an administrative user being able to inject JavaScript or other content into the Technical Support...

4.8CVSS5.6AI score0.0022EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/10/08 12:0 a.m.5 views

OPEXUS FOIAXpress 安全漏洞

OPEXUS FOIAXpress is an information disclosure management software from OPEXUS Corporation. A security vulnerability exists in OPEXUS FOIAXpress versions prior to 11.13.3.0 that originates from an administrative user being able to inject JavaScript or other content into the annual report template...

4.8CVSS5.6AI score0.0022EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/10/07 11:14 p.m.7 views

CVE-2025-61999 OPEXUS FOIAXpress stored XSS via logo image

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other content embedded in an SVG image used as a logo. Injected content is executed in the context of other users when they view affected pages. Successful exploitation allows the administrative user to perfo...

4.8CVSS0.0022EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/10/07 11:14 p.m.3 views

CVE-2025-61999 OPEXUS FOIAXpress stored XSS via logo image

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other content embedded in an SVG image used as a logo. Injected content is executed in the context of other users when they view affected pages. Successful exploitation allows the administrative user to perfo...

4.8CVSS6.4AI score0.0022EPSS
Exploits0References3
Rows per page
Query Builder