Os4ed Opensis-classic
2 CVEs affecting Os4ed Opensis-classic. Latest disclosed: 2026-07-14. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-11944 | Medium | 6.5 | 2026-07-14 | openSIS Classic 9.3 contains an authenticated path traversal vulnerability in the legacy messaging sent-mail attachment download functionality that allows an a… |
CVE-2026-8406 | | 2026-06-11 | openSIS Classic 9.3 contains an insecure direct object reference vulnerability in the messaging module. Any authenticated user with access to the messaging mod… |