2026-01-08 17:13:24
cisa-cg
PUBLISHED
OPEXUS eComplaint before version 9.0.45.0 allows an attacker to visit the the DocumentOpen.aspx endpoint, iterate through predictable values of chargeNumber, and download any uploaded files.