aEnrich
Security Scorecard
Score
18D
Total CVEs
1,467
Patch Rate
20%
292 patched
Avg Response
99d
days to patch
Critical Gaps
39
exploitable, no detection
Severity Breakdown
Critical27
High196
Medium606
Low28
Patch Status
Patched292 (20%)
Partial/Workaround22 (1%)
Unpatched1153 (79%)
CVEs (1,598)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-13545 | ashraf-kabir travel-agency vulnerability | MEDIUM | 4.7 | 22d | Unpatched |
| CVE-2025-66106 | aEnrich Auth Bypass | MEDIUM | 4.3 | 24d | Patched |
| CVE-2025-66095 | KiviCare SQL Injection | MEDIUM | 4.3 | 24d | Patched |
| CVE-2025-66089 | WebToffee Product Feed Vulnerability | MEDIUM | 4.3 | 24d | Patched |
| CVE-2025-66066 | Envo Extra Cross-site Scripting Vulnerability | MEDIUM | 6.1 | 24d | Patched |
| CVE-2025-66060 | aEnrich Auth Bypass | MEDIUM | 5.3 | 24d | Patched |
| CVE-2025-66061 | aEnrich Auth Bypass | MEDIUM | 4.3 | 24d | Patched |
| CVE-2025-12022 | aEnrich HR Admin Token Forgery Vulnerability | MEDIUM | 4.3 | - | Patched |
| CVE-2025-12023 | ELEX HelpDesk Vulnerability | MEDIUM | 4.3 | - | Patched |
| CVE-2025-62189 | LogStare Collector Vulnerability | MEDIUM | 4.3 | 24d | Unpatched |