CNNVD-202509-1148 Information

Sep 09, 2025 cve

CNNVD ID

CNNVD-202509-1148

CVE-2025-58462

CNNVD Published: 2025-09-09

Description (Chinese)

OPEXUS FOIAXpress Public Access Link（OPEXUS FOIAXpress PAL）是OPEXUS公司的一个面向公众的安全 Web 门户，将机构与请求者联系起来，并与支付解决方案集成，包括支付解决方案。 OPEXUS FOIAXpress Public Access Link 11.13.1.0之前版本存在安全漏洞，该漏洞源于SearchPopularDocs.aspx存在SQL注入，可能导致数据库内容泄露。

Description (English)

OPEXUS FOIAXpress Public Access Link (OPEXUS FOIAXpress PAL) is a public-oriented security Web portal for OPEXUS that connects institutions to claimants and integrates payment solutions, including payment solutions. OPEXUS FOIAXpress Public Access Link 11.13.1.0 contains a security loophole, which originates from the SQL injection of SarchPopularDocs.aspx, which may lead to the leaking of the database contents.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

OPEXUS

Published

2025-09-09

Last Modified

2026-02-24

References

https://docs.opexustech.com/docs/foiaxpress/11.13.0/FOIAXpress_Release_Notes_11.13.1.0.pdf https://github.com/cisagov/CSAF/blob/develop/csaf_files/IT/white/2025/va-25-252-01.json https://www.cve.org/CVERecord?id=CVE-2025-58462

Patch

https://opexus.com/

Share on: