Every CVE whose affected-product data names Krpano, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-24900 — CVSS 6.1 (medium): The default installation of Krpano Panorama Viewer version <=1.20.8 is prone to Reflected XSS due to insecure XML load in file…
CVE-2020-24901 — CVSS 6.1 (medium): The default installation of Krpano Panorama Viewer version <=1.20.8 is vulnerable to Reflected XSS due to insecure remote js load in file…
CVE-2025-65892 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (rXSS) in krpano before version 1.23.2 allows a remote unauthenticated attacker to execute arbitrary…