Every CVE whose affected-product data names Microengine Mailform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-27397 — CVSS 9.8 (critical): Unrestricted upload of file with dangerous type exists in MicroEngine Mailform version 1.1.0 to 1.1.8. If the product's file upload…
CVE-2023-27507 — CVSS 9.8 (critical): MicroEngine Mailform version 1.1.0 to 1.1.8 contains a path traversal vulnerability. If the product's file upload function and server save…