Every CVE whose affected-product data names Eic E-document System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-22859 — CVSS 9.8 (critical): The users’ data querying function of EIC e-document system does not filter the special characters which resulted in remote attackers can…
CVE-2021-22860 — CVSS 9.8 (critical): EIC e-document system does not perform completed identity verification for sorting and filtering personnel data. The vulnerability allows…
CVE-2021-34683 — CVSS 5.3 (medium): An issue was discovered in EXCELLENT INFOTEK CORPORATION (EIC) E-document System 3.0. A remote attacker can use kw/auth/bbs/asp/get_user_ema…