Every CVE whose affected-product data names Zfaka Project Zfaka, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-22294 — CVSS 9.8 (critical): A SQL injection vulnerability exists in ZFAKA<=1.43 which an attacker can use to complete SQL injection in the foreground and add a…
CVE-2022-24553 — CVSS 9.8 (critical): An issue was found in Zfaka <= 1.4.5. The verification of the background file upload function check is not strict, resulting in remote…