Every CVE whose affected-product data names Plain Black Webgui, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2008-2077 — CVSS 10.0 (critical): Unspecified vulnerability in Plain Black WebGUI 7.4.34 has unknown impact and attack vectors related to "data form list view."
CVE-2007-0407 — CVSS 6.8 (medium): Cross-site scripting (XSS) vulnerability in Operation/User.pm in Plain Black WebGUI before 7.3.5 (beta) allows remote attackers to inject…
CVE-2007-0308 — CVSS 6.8 (medium): Cross-site scripting (XSS) vulnerability in Plain Black WebGUI before 7.3.4 (beta) allows remote attackers to inject arbitrary web script…
CVE-2007-0629 — CVSS 6.4 (medium): The www_purgeList method in Plain Black WebGUI before 7.3.8 does not properly check user permissions, which allows attackers to delete…
CVE-2006-0680 — CVSS 5.0 (medium): Unspecified vulnerability in WebGUI before 6.8.6-gamma allows remote attackers to create an account, when anonymous registration is…
CVE-2007-6487 — CVSS 4.9 (medium): Unspecified vulnerability in Plain Black WebGUI 7.4.0 through 7.4.17 allows remote authenticated users with Secondary Admin privileges to…
CVE-2006-0165 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the DataForm Entries functionality in Plain Black WebGUI before 6.8.4 (gamma) allows remote…
CVE-2007-2746 — CVSS 3.5 (low): The viewList function in lib/WebGUI/Asset/Wobject/DataForm.pm in Plain Black WebGUI before 7.3.14 does not properly use data structures…