Opexus Foiaxpress

5 CVEs affecting Opexus Foiaxpress. Latest disclosed: 2025-10-16. Critical: 1, High: 0.

Top CVEs affecting Opexus Foiaxpress
CVESeverityScorePublishedSummary
CVE-2025-62586Critical9.82025-10-16OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0.
CVE-2025-61999Medium4.32025-10-08OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other content embedded in an SVG image used as a logo. Injected conten…
CVE-2025-61998Medium4.32025-10-08OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content as a URL within the Technical Support Hyperlink Manager…
CVE-2025-61997Medium4.32025-10-08OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Enterprise Banner image upload…
CVE-2025-61996Medium4.32025-10-08OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Template. Injected content is e…