aEnrich
Security Scorecard
Score
36D
Total CVEs
2,505
Patch Rate
38%
962 patched
Avg Response
149d
days to patch
Critical Gaps
43
exploitable, no detection
Severity Breakdown
Critical215
High633
Medium1017
Low29
Patch Status
Patched962 (38%)
Partial/Workaround298 (12%)
Unpatched1245 (50%)
CVEs (2,734)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-62867 | Ergonet Cache Vulnerability | Medium | 4.3 | - | Patched |
| CVE-2025-62871 | TinyMCE CSRF | Medium | 4.3 | - | Patched |
| CVE-2025-66526 | Tablesome Access Control Bypass | Medium | 4.3 | - | Patched |
| CVE-2025-66527 | Lobo Theme Broken Access Control Vulnerability | Medium | 4.3 | - | Patched |
| CVE-2025-67474 | aEnrich Auth Bypass | Medium | 4.3 | - | Patched |
| CVE-2025-67596 | aEnrich Auth Bypass | Medium | 4.3 | 25d | Unpatched |
| CVE-2022-47425 | aEnrich HR Admin Token Forgery | Medium | 4.3 | - | Patched |
| CVE-2025-63739 | Xinhu Rainrock RockOA Authentication Bypass | Medium | 4.3 | - | Patched |
| CVE-2025-63740 | Xinhu Rainrock RockOA SQL Injection Vulnerability | Medium | 4.3 | - | Patched |
| CVE-2025-67496 | WeGIA Cross-Site Scripting (XSS) | Medium | 4.3 | - | Patched |