Every CVE whose affected-product data names Frank-karau Phpfk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2009-2112 — CVSS 7.5 (high): Directory traversal vulnerability in include/page_bottom.php in phpFK 7.03 allows remote attackers to include and execute arbitrary local…
CVE-2017-18364 — CVSS 7.4 (high): phpFK lite has XSS via the faq.php, members.php, or search.php query string or the user.php user parameter.