Every CVE whose affected-product data names Ultra-prod Wordpress Ultra Simple Paypal Shopping Cart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.