CVE-2017-12856
Cross-site scripting (XSS) vulnerability in C.P.Sub 5.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter to index.php.
6.1CVSS
6AI Score
0.001EPSS
CVE-2019-7738
C.P.Sub before 5.3 allows CSRF via a manage.php?p=article_del&id= URI.
6.5CVSS
6.4AI Score