Every CVE whose affected-product data names Hyphp Hybbs, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-10644 — CVSS 8.8 (high): An issue was discovered in HYBBS 2.2. /?admin/user.html has a CSRF vulnerability that can add an administrator account.
CVE-2018-14499 — CVSS 6.1 (medium): An issue was found in HYBBS through 2016-03-08. There is an XSS vulnerablity via an article title to post.html.