Back

Security advisories (January 2026)

The documents listed below summarize a set of security vulnerabilities identified by a third-party research organization. Explorance reviewed each issue, confirmed applicability, implemented fixes, and released patches where required. All issues have been fully addressed, affected customers were notified, and there are no known cases where vulnerability was used by attackers in real-world environments.

Common Vulnerabilities and Exposures (CVE) summaries

CVE-2025-57792

An unauthenticated SQL injection vulnerability that could have allowed remote attackers to access or manipulate application data.
Resolved: Patch released 2025-05-06. View: CVE-2025-057792

CVE-2025-57793

An unauthenticated SQL injection issue with potential exposure of sensitive configuration data.
Resolved: Patch released 2025-05-06. View: CVE-2025-57793

CVE-2025-57794

An authenticated unrestricted file upload vulnerability that could have enabled a privileged user to execute code on the server.
Resolved: Patch released 2025-05-06. View: CVE-2025-57794

CVE-2025-57795

An authenticated remote file download issue that could have led to remote code execution under specific conditions.
Resolved: Patch released 2025-09-30. View: CVE-2025-57795

CVE-2025-57796

A reversible encryption issue using a static key that could have allowed database-level attackers to decrypt stored credentials.
Resolved: Patch released 2025-09-30. View: CVE-2025-57796

Copyright © 2026

Explorance Inc. All rights reserved.