Every CVE whose affected-product data names Winterchens My-site, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2024-53496 — CVSS 9.8 (critical): Incorrect access control in the doFilter function of my-site v1.0.2.RELEASE allows attackers to access sensitive components without…
CVE-2025-50904 — CVSS 9.8 (critical): There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 (2025-06-11). An attacker can exploit this…
CVE-2024-53495 — CVSS 7.5 (high): Incorrect access control in the preHandle function of my-site v1.0.2.RELEASE allows attackers to access sensitive components without…
CVE-2024-57152 — CVSS 7.5 (high): Incorrect access control in the preHandle function of my-site v1.0.2 allows attackers to access sensitive components without authentication…
CVE-2025-8838 — CVSS 7.3 (high): A vulnerability has been found in WinterChenS my-site up to 1f7525f15934d9d6a278de967f6ec9f1757738d8. This vulnerability affects the…