Every CVE whose affected-product data names Bestfeng Xckk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-60265 — CVSS 6.5 (medium): In xckk v9.6, there is a SQL injection vulnerability in which the orderBy parameter in user/list is not securely filtered, resulting in a…
CVE-2025-60266 — CVSS 6.5 (medium): In xckk v9.6, there is a SQL injection vulnerability in which the orderBy parameter in address/list is not securely filtered, resulting in…
CVE-2025-60267 — CVSS 6.5 (medium): In xckk v9.6, there is a SQL injection vulnerability in which the cond parameter in notice/list is not securely filtered, resulting in a…