Every CVE whose affected-product data names Basic B2b Script Project Basic B2b Script, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2018-20644 — CVSS 8.8 (high): PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile feature.
CVE-2018-20646 — CVSS 6.5 (medium): PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an…