Opexus Foiaxpress
5 CVEs affecting Opexus Foiaxpress. Latest disclosed: 2025-10-16. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-62586 | Critical | 9.8 | 2025-10-16 | OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0. |
CVE-2025-61999 | Medium | 4.3 | 2025-10-08 | OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other content embedded in an SVG image used as a logo. Injected conten… |
CVE-2025-61998 | Medium | 4.3 | 2025-10-08 | OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content as a URL within the Technical Support Hyperlink Manager… |
CVE-2025-61997 | Medium | 4.3 | 2025-10-08 | OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Enterprise Banner image upload… |
CVE-2025-61996 | Medium | 4.3 | 2025-10-08 | OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Template. Injected content is e… |