Wenkucms Project Wenkucms — known CVE vulnerabilities
Every CVE whose affected-product data names Wenkucms Project Wenkucms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-11138 — CVSS 6.3 (medium): A vulnerability was found in mirweiye wenkucms up to 3.4. This impacts the function createPathOne of the file app/common/common.php. The…
CVE-2020-19157 — CVSS 6.1 (medium): Cross Site Scripting (CSS) in Wenku CMS v3.4 allows remote attackers to execute arbitrary code via the 'Intro' parameter for the component…