Every CVE whose affected-product data names Xiebruce Picuploader, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-44794 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in the component /master/auth/OnedriveRedirect.php of PicUploader commit fcf82ea allows…
CVE-2024-44796 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to…