Every CVE whose affected-product data names Syslifters Sysreptor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-36076 — CVSS 8.8 (high): Cross-Site WebSocket Hijacking in SysReptor from version 2024.28 to version 2024.30 causes attackers to escalate privileges and obtain…
CVE-2025-59945 — CVSS 8.1 (high): SysReptor is a fully customizable pentest reporting platform. In versions from 2024.74 to before 2025.83, authenticated and unprivileged…
CVE-2025-66561 — CVSS 7.3 (high): SysReptor is a fully customizable pentest reporting platform. Prior to 2025.102, there is a Stored Cross-Site Scripting (XSS) vulnerability…