VYPR

Quipux

by Quipux

CVEs (3)

  • CVE-2025-55343Nov 5, 2025
    risk 0.00cvss epss 0.01

    Quipux 4.0.1 through e1774ac allows authenticated users to conduct SQL injection attacks via busqueda/busqueda.php txt_depe_codi, busqueda/busqueda.php txt_usua_codi, anexos_lista.php radi_temp, Administracion/listas/formArea_ajax.php codDepe,…

  • CVE-2025-55342Nov 5, 2025
    risk 0.00cvss epss 0.00

    Quipux 4.0.1 through e1774ac allows enumeration of usernames, and accessing the Ecuadorean identification number for all registered users via the Administracion/usuarios/cambiar_password_olvido_validar.php txt_login parameter.

  • CVE-2025-55341Nov 5, 2025
    risk 0.00cvss epss 0.00

    Cross Site Scripting vulnerability in Quipux 4.0.1 through e1774ac allows anexos/anexos_nuevo.php asocImgRad.