Opexustech Foiaxpress Public Access Link — known CVE vulnerabilities
Every CVE whose affected-product data names Opexustech Foiaxpress Public Access Link, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2025-58462 — CVSS 9.8 (critical): OPEXUS FOIAXpress Public Access Link (PAL) before version 11.13.1.0 allows SQL injection via SearchPopularDocs.aspx. A remote…
CVE-2024-53553 — CVSS 9.1 (critical): An issue in OPEXUS FOIAXPRESS PUBLIC ACCESS LINK v11.1.0 allows attackers to bypass authentication via crafted web requests.
CVE-2025-54833 — CVSS 5.3 (medium): OPEXUS FOIAXpress Public Access Link (PAL) version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections…
CVE-2025-54834 — CVSS 5.3 (medium): OPEXUS FOIAXpress Public Access Link (PAL) version v11.1.0 allows an unauthenticated, remote attacker to query the /App/CreateRequest.aspx…
CVE-2025-54832 — CVSS 4.3 (medium): OPEXUS FOIAXpress Public Access Link (PAL), version v11.1.0, allows an authenticated user to add entries to the list of states and…