Syslifters Sysreptor
4 CVEs affecting Syslifters Sysreptor. Latest disclosed: 2026-05-08. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-59945 | High | 8.1 | 2025-09-27 | SysReptor is a fully customizable pentest reporting platform. In versions from 2024.74 to before 2025.83, authenticated and unprivileged (non-admin) users can… |
CVE-2025-66561 | High | 7.3 | 2025-12-04 | SysReptor is a fully customizable pentest reporting platform. Prior to 2025.102, there is a Stored Cross-Site Scripting (XSS) vulnerability allows authenticate… |
CVE-2026-42291 | Medium | 6.8 | 2026-05-08 | SysReptor is a fully customizable pentest reporting platform. From version 2026.4 to before version 2026.27, the endpoints for reading and creating sharing lin… |
CVE-2026-44987 | Low | 3.8 | 2026-05-08 | SysReptor is a fully customizable pentest reporting platform. Prior to version 2026.29, users with "User Admin" permissions can change the email addresses of u… |