Every CVE whose affected-product data names Talelin Lin-cms-flask, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-18698 — CVSS 9.8 (critical): Improper Authentication in Lin-CMS-Flask v0.1.1 allows remote attackers to launch brute force login attempts without restriction via the…
CVE-2020-18701 — CVSS 9.8 (critical): Incorrect Access Control in Lin-CMS-Flask v0.1.1 allows remote attackers to obtain sensitive information and/or gain privileges due to the…
CVE-2020-18699 — CVSS 6.1 (medium): Cross Site Scripting (XSS) in Lin-CMS-Flask v0.1.1 allows remote attackers to execute arbitrary code by entering scripts in the the…