Opexus · Opexus Foiaxpress Public Access Link · CVE-2025-58462
Name of the Vulnerable Software and Affected Versions:
OPEXUS FOIAXpress Public Access Link (PAL) versions prior to 11.13.1.0
Description:
A SQL injection flaw exists in OPEXUS FOIAXpress Public Access Link (PAL) via the `SearchPopularDocs.aspx` page. A remote, unauthenticated attacker could potentially read, write, or delete content within the underlying database.
Recommendations:
Upgrade to version 11.13.1.0 or later.