← Back

Ecase Portal

ecase_portal

Vendor: Opexustech • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2026-22234
1Opexustech
1Ecase Portal
Feb 18, 2026
Jan 8, 2026
9.3 CRITICAL· v4
9.8 CRITICAL· v3
N/A· v2
OPEXUS eCasePortal before version 9.0.45.0 allows an unauthenticated attacker to navigate to the 'Attachments.aspx' endpoint, iterate through predictable values of 'formid', and download or delete all user-uploaded files...Show more
OPEXUS eCasePortal before version 9.0.45.0 allows an unauthenticated attacker to navigate to the 'Attachments.aspx' endpoint, iterate through predictable values of 'formid', and download or delete all user-uploaded files, or upload new files.Show less