Wayang-cms Project Wayang-cms — known CVE vulnerabilities
Every CVE whose affected-product data names Wayang-cms Project Wayang-cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-29147 — CVSS 7.5 (high): A SQL injection vulnerability in wy_controlls/wy_side_visitor.php of Wayang-CMS v1.0 allows attackers to obtain sensitive database…
CVE-2020-29146 — CVSS 6.1 (medium): A cross site scripting (XSS) vulnerability in index.php of Wayang-CMS v1.0 allows attackers to execute arbitrary web scripts or HTML via a…