Every CVE whose affected-product data names Heybbs Project Heybbs, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-25004 — CVSS 9.8 (critical): Heybbs v1.2 has a SQL injection vulnerability in user.php file via the ID parameter which may allow a remote attacker to execute arbitrary…
CVE-2020-25005 — CVSS 9.8 (critical): Heybbs v1.2 has a SQL injection vulnerability in msg.php file via the ID parameter which may allow a remote attacker to execute arbitrary…
CVE-2020-25006 — CVSS 9.8 (critical): Heybbs v1.2 has a SQL injection vulnerability in login.php file via the username parameter which may allow a remote attacker to execute…