| CVE-2024-13147 |
Merkur Software's B2B 登录面板中的SQL注入漏洞 |
超危
|
TR-CERT |
|
2025-03-05 14:06:04 |
| CVE-2024-12097 |
Boceksoft Informatics' E-Travel 存在SQL注入漏洞 |
超危
|
TR-CERT |
|
2025-03-05 13:18:28 |
| CVE-2024-11216 |
PozitifIK's Pik Online存在访问控制缺陷 |
高危
|
TR-CERT |
|
2025-03-05 13:02:21 |
| CVE-2024-12650 |
Wago: libwagosnmp组件漏洞 |
中危
|
CERTVDE |
|
2025-03-05 11:46:15 |
| CVE-2024-11153 |
Content Control – The Ultimate Content Restriction Plugin!插件2.5.0及之前版本存在未认证的内容限制绕过漏洞,导致敏感信息泄露 |
中危
|
Wordfence |
|
2025-03-05 11:22:11 |
| CVE-2024-12281 |
Homey <= 2.4.2 未认证权限提升漏洞 |
超危
|
Wordfence |
|
2025-03-05 11:22:10 |
| CVE-2024-11951 |
Homey Login Register 2.4.0及以下版本中homey_register存在未认证权限提升漏洞 |
超危
|
Wordfence |
|
2025-03-05 11:22:10 |
| CVE-2025-1702 |
Ultimate Member <= 2.10.0 版本通过搜索参数存在未经身份验证的SQL注入漏洞 |
高危
|
Wordfence |
|
2025-03-05 11:22:09 |
| CVE-2024-13423 |
Sparkling <= 2.4.9 版本存在未认证的任意插件激活/禁用漏洞 |
中危
|
Wordfence |
|
2025-03-05 11:22:09 |
| CVE-2024-13471 |
DesignThemes Core Features <= 4.7 版本任意文件读取漏洞 |
高危
|
Wordfence |
|
2025-03-05 11:22:09 |
| CVE-2025-1463 |
Spreadsheet Integration <= 3.8.2存在跨站请求伪造到任意文章发布漏洞 |
中危
|
Wordfence |
|
2025-03-05 11:22:08 |
| CVE-2025-25015 |
Kibana 通过原型污染执行任意代码漏洞 |
超危
|
elastic |
|
2025-03-05 09:46:34 |
| CVE-2024-13232 |
WordPress Awesome Import & Export插件-导入及导出WordPress数据 <= 4.1.1 - 验证不足导致特权用户任意SQL执行/权限提升漏洞 |
高危
|
Wordfence |
|
2025-03-05 09:21:51 |
| CVE-2024-11731 |
Master Slider – Responsive Touch Slider <= 3.10.6 版本存在经由 ms_slider 短代码引起的经过身份验证的 (Contributor+) 存储型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:51 |
| CVE-2024-13815 |
Listingo - Business Listing and Directory WordPress Theme 3.2.7及之前版本存在未认证的任意短代码执行漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:50 |
| CVE-2024-13747 |
WooMail - WooCommerce Email Customizer <= 3.0.34 - 经认证的订阅者缺失授权至SQL注入漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:50 |
| CVE-2024-12815 |
Point Maker <= 0.1.6 - 经认证 (贡献者+) 存储型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:49 |
| CVE-2024-13787 |
VEDA - MultiPurpose WordPress Theme <= 4.2 版本认证 (订阅用户+) PHP 对象注入漏洞 |
超危
|
Wordfence |
|
2025-03-05 09:21:49 |
| CVE-2024-13810 |
Zass - WooCommerce Theme for Handmade Artists and Artisans <= 3.9.9.10 - 验证用户缺少授权可导入演示数据漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:49 |
| CVE-2025-1515 |
WP Real Estate Manager <= 2.8 版本存在通过接管账户绕过身份认证漏洞 |
超危
|
Wordfence |
|
2025-03-05 09:21:48 |