Sick Incoming Goods Suite — known CVE vulnerabilities
Every CVE whose affected-product data names Sick Incoming Goods Suite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2026-22644 — CVSS 5.3 (medium): Certain requests pass the authentication token in the URL as string query parameter, making it vulnerable to theft through server logs…
CVE-2026-22645 — CVSS 5.3 (medium): The application discloses all used components, versions and license information to unauthenticated actors, giving attackers the opportunity…
CVE-2026-22646 — CVSS 4.3 (medium): Certain error messages returned by the application expose internal system details that should not be visible to end users, providing…