CVE-2024-13839 |
Company Directory <= 4.3 版本存在通过 add_query_arg 函数反射型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:48 |
CVE-2025-0954 |
WP Online Contract <= 5.1.4 - 未认证设置导入缺乏授权漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:47 |
CVE-2024-13778 |
Hero Mega Menu - Responsive WordPress菜单插件 <= 1.16.5 - 经认证 (订阅用户+) SQL注入漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:47 |
CVE-2024-13811 |
Lafka - Multi Store Burger - Pizza & Food Delivery WooCommerce Theme <= 4.5.7 - 认证用户可利用未授权漏洞导入演示数据 |
中危
|
Wordfence |
|
2025-03-05 09:21:46 |
CVE-2024-13757 |
Master Slider – Responsive Touch Slider <= 3.10.6 版本存在经由 ms_layer 短代码引起的经过身份验证的 (Contributor+) 存储型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:46 |
CVE-2024-5667 |
多个插件 <= (各种版本) - 经认证 (贡献者+) 通过 Featherlight.js JavaScript 库存储的 DOM 型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:46 |
CVE-2024-13777 |
ZoomSounds - WordPress Wave Audio Player with Playlist <= 6.91 - 未认证的PHP对象注入漏洞 |
高危
|
Wordfence |
|
2025-03-05 09:21:45 |
CVE-2024-13779 |
Hero Mega Menu - Responsive WordPress菜单插件 <= 1.16.5 反射型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 09:21:45 |
CVE-2025-0956 |
WooCommerce Recover Abandoned Cart <= 24.3.0 - 未认证的PHP对象注入漏洞 |
高危
|
Wordfence |
|
2025-03-05 09:21:44 |
CVE-2024-13780 |
Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 版本存在授权验证不足漏洞,允许认证用户(订阅者及以上权限)任意删除目录 |
中危
|
Wordfence |
|
2025-03-05 09:21:44 |
CVE-2025-22493 |
Foreseer Reporting Software (FRS)中cookie属性设置不当 |
中危
|
Eaton |
|
2025-03-05 08:53:59 |
CVE-2025-1008 |
Woo <= 1.1.3 版本中存在的经认证的 (Contributor+) view 参数存储型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 08:21:57 |
CVE-2024-13866 |
Simple Notification <= 1.3 - 经认证(管理员+)存储型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 08:21:57 |
CVE-2024-13350 |
SearchIQ – The Search Solution <= 4.7 - 经认证(贡献者+)存储型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 08:21:56 |
CVE-2024-13827 |
Razorpay Subscription Button Elementor插件 <= 1.0.3版本中add_query_arg和remove_query_arg函数存在反射型跨站脚本漏洞 |
中危
|
Wordfence |
|
2025-03-05 08:21:56 |
CVE-2025-0990 |
I Am Gloria <= 1.1.4跨站请求伪造漏洞 |
中危
|
Wordfence |
|
2025-03-05 08:21:55 |
CVE-2024-8682 |
JNews - WordPress Newspaper Magazine Blog AMP Theme <= 11.6.6 版本存在未经授权的用户注册漏洞 |
中危
|
Wordfence |
|
2025-03-05 08:21:55 |
CVE-2025-1435 |
bbPress <= 2.6.11 存在跨站请求伪造漏洞并导致低权限提升 |
中危
|
Wordfence |
|
2025-03-05 08:21:54 |
CVE-2025-1393 |
威德穆勒:由于使用了硬编码凭证的身份验证漏洞 |
超危
|
CERTVDE |
|
2025-03-05 08:03:09 |
CVE-2025-1923 |
N/A |
N/A
|
Chrome |
|
2025-03-05 03:48:38 |