Every CVE whose affected-product data names Opexustech Foiaxpress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2025-62586 — CVSS 9.8 (critical): OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset the administrator password. Fixed in FOIAXpress version 11.13.2.0.
CVE-2025-61996 — CVSS 4.3 (medium): OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Template…
CVE-2025-61997 — CVSS 4.3 (medium): OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Enterprise…
CVE-2025-61998 — CVSS 4.3 (medium): OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content as a URL within the Technical…
CVE-2025-61999 — CVSS 4.3 (medium): OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other content embedded in an SVG image used as a…