Every CVE whose affected-product data names Ard Gec En Ligne, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-55888 — CVSS 7.3 (high): Cross-Site Scripting (XSS) vulnerability was discovered in the Ajax transaction manager endpoint of ARD. An attacker can intercept the Ajax…
CVE-2025-55885 — CVSS 6.3 (medium): SQL Injection vulnerability in Alpes Recherche et Developpement ARD GEC en Lign before v.2025-04-23 allows a remote attacker to escalate…
CVE-2025-55887 — CVSS 6.1 (medium): Cross-Site Scripting (XSS) vulnerability was discovered in the meal reservation service ARD. The vulnerability exists in the transactionID…