Vulnerabilities in aces
11 resultsCVE-2026-26984HIGHLORIS media module vulnerable to remote code executionEPSS 0.7%CVE-2026-26985HIGHLORIS vulnerable to path traversal in electrophysiology_browserEPSS 0.3%CVE-2026-34392HIGHLORIS has a path traversal in static routerEPSS 0.3%CVE-2026-33350HIGHLORIS has a SQL injection in MRI feedback popupEPSS 0.2%CVE-2026-35446HIGHLORIS has a path traversal in FilesDownloadHandlerEPSS 0.2%CVE-2026-34985MEDIUMLORIS has incorrect access checks in media moduleEPSS 0.2%CVE-2026-39985MEDIUMLORIS has an open redirect field on loginEPSS 0.2%CVE-2026-35400LOWLORIS incorrectly trusts user input in publication moduleEPSS 0.2%CVE-2026-35403MEDIUMLORIS has potential cross-site scripting in survey_accounts moduleEPSS 0.2%CVE-2026-35165MEDIUMLORIS has incorrect access checks in document_repositoryEPSS 0.2%CVE-2026-35169HIGHLORIS has potential cross-site scripting in help_editor moduleEPSS 0.2%