Every CVE whose affected-product data names Gouguoyin Phprap, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-11031 — CVSS 9.8 (critical): application/home/controller/debug.php in PHPRAP 1.0.4 through 1.0.8 has SSRF via the /debug URI, as demonstrated by an…
CVE-2018-11032 — CVSS 9.8 (critical): PHPRAP 1.0.4 through 1.0.8 has SQL Injection via the application/home/controller/project.php search() function.