Every CVE whose affected-product data names Jorani Project Jorani, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-15917 — CVSS 5.4 (medium): Persistent cross-site scripting (XSS) issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language…
CVE-2018-15918 — CVSS 5.4 (medium): An issue was discovered in Jorani 0.6.5. SQL Injection (error-based) allows a user of the application without permissions to read and…