Every CVE whose affected-product data names Ari-soft Ari Adminer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-25215 — CVSS 7.3 (high): The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file access controls in nearly every file of…
CVE-2020-19156 — CVSS 5.4 (medium): Cross Site Scripting (XSS) in Ari Adminer v1 allows remote attackers to execute arbitrary code via the 'Title' parameter of the 'Add New…