Primary

Context

OPEXUS eComplaint Unauthenticated File Upload Vulnerability

Vulnerability

A vulnerability in OPEXUS eComplaint versions prior to 10.1.0.0 allows unauthenticated attackers to upload arbitrary files to existing case numbers through the 'Portal/EEOC/DocumentUploadPub.aspx' page. The uploaded files would be visible to users within their cases. This flaw could be exploited to consume excessive storage by uploading a large volume of files.

Impact

Exploitation of this vulnerability could lead to unauthorized file uploads, allowing attackers to inject files that could be accessed by users. Additionally, such actions could result in a denial-of-service condition by overwhelming the application's storage capacity with excessive files.

Remediation

Users can upgrade to OPEXUS eComplaint version 10.1.0.0 or later to address this vulnerability.

Added: Mar 19, 2026, 4:21 PM

Updated: Mar 19, 2026, 4:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

0.0

relevance

4.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

0.0

relevance

4.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OPEXUS eComplaint Unauthenticated File Upload Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating