Jake Knott

1 exploit Active since May 2025
CVE-2025-2775 NOMISEC CRITICAL WORKING POC
SysAid On-Prem <= 23.3.40 - XML External Entity
SysAid On-Prem versions <= 23.3.40 are vulnerable to an unauthenticated XML External Entity (XXE) vulnerability in the Checkin processing functionality, allowing for administrator account takeover and file read primitives.
12 stars
CVSS 9.3