Every CVE whose affected-product data names Openpsa2 Openpsa, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-1000525 — CVSS 9.8 (critical): openpsa contains a PHP Object Injection vulnerability in Form data passed as GET request variables that can result in Possible information…
CVE-2018-1000526 — CVSS 7.5 (high): Openpsa contains a XML Injection vulnerability in RSS file upload feature that can result in Remote denial of service. This attack appear…