Opexustech Ecase Ecomplaint — known CVE vulnerabilities
Every CVE whose affected-product data names Opexustech Ecase Ecomplaint, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2026-32865 — CVSS 9.8 (critical): OPEXUS eComplaint and eCASE before version 10.1.0.0 include the secret verification code in the HTTP response when requesting a password…
CVE-2026-22235 — CVSS 7.5 (high): OPEXUS eComplaint before version 9.0.45.0 allows an attacker to visit the the 'DocumentOpen.aspx' endpoint, iterate through predictable…
CVE-2026-32866 — CVSS 5.5 (medium): OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly sanitize the contents of first and last name fields in a user profile. An…
CVE-2026-32868 — CVSS 5.5 (medium): OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly sanitize the contents of first and last name fields in the 'My Information'…
CVE-2026-32869 — CVSS 5.5 (medium): OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly sanitize the contents of the "Name of Organization" field when filling out…
CVE-2026-32867 — CVSS 5.4 (medium): OPEXUS eComplaint before version 10.1.0.0 allows an unauthenticated attacker to obtain or guess an existing case number and upload…