All 4 CVE vulnerabilities found in sysreptor, with AI-generated Chinese analysis, references, and POCs.
Vendor: Syslifters
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-44987 | SysReptor: Privilege Escalation from User Admin to Superuser CWE-269 | 3.8 | Low | 2026-05-08 |
| CVE-2026-42291 | SysReptor: Read-write access to personal notes by sharing-link creation with no authorization in SysReptor Professional CWE-639 | 6.8 | Medium | 2026-05-08 |
| CVE-2025-66561 | SysReptor Vulnerable to an Authenticated Stored Cross-Site Scripting (XSS) CWE-79 | 7.3 | High | 2025-12-04 |
| CVE-2025-59945 | SysReptor Susceptible to Privilege Escalation by Authenticated Users CWE-266 | 8.1 | High | 2025-09-27 |
All 4 known CVE vulnerabilities affecting sysreptor with full Chinese analysis, references, and POCs where available.