Systematic Iris Webforms — known CVE vulnerabilities
Every CVE whose affected-product data names Systematic Iris Webforms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-18925 — CVSS 9.8 (critical): Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication.
CVE-2019-18924 — CVSS 5.3 (medium): Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ (and…