Every CVE whose affected-product data names Raspap Raspap-webgui, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-36622 — CVSS 9.8 (critical): In RaspAP raspap-webgui 3.0.9 and earlier, a command injection vulnerability exists in the clearlog.php script. The vulnerability is due to…
CVE-2025-50428 — CVSS 9.8 (critical): In RaspAP raspap-webgui 3.3.2 and earlier, a command injection vulnerability exists in the includes/hostapd.php script. The vulnerability…
CVE-2025-44163 — CVSS 6.3 (medium): RaspAP raspap-webgui 3.3.1 is vulnerable to Directory Traversal in ajax/networking/get_wgkey.php. An authenticated attacker can send a…