Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Os4ed:
>> Opensis
>> 7.1
Security Vulnerabilities
CVE-2025-22931
An insecure direct object reference (IDOR) in the component /assets/stafffiles of OS4ED openSIS v7.0 to v9.1 allows unauthenticated attackers to access files uploaded by staff members.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-04-03
CVE-2025-22928
OS4ED openSIS v7.0 to v9.1 was discovered to contain a SQL injection vulnerability via the cp_id parameter at /modules/messages/Inbox.php.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-04-03
CVE-2020-13380
openSIS before 7.4 allows SQL Injection.
CVSS Score
9.8
EPSS Score
0.011
Published
2020-07-01
CVE-2020-13381
openSIS through 7.4 allows SQL Injection.
CVSS Score
9.8
EPSS Score
0.46
Published
2020-07-01
CVE-2020-13382
openSIS through 7.4 has Incorrect Access Control.
CVSS Score
9.1
EPSS Score
0.586
Published
2020-07-01
CVE-2020-13383
openSIS through 7.4 allows Directory Traversal.
CVSS Score
7.5
EPSS Score
0.421
Published
2020-07-01
Page 1
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved