| CVE-2025-14059 |
WordPress EmailKit插件路径遍历任意文件读取漏洞 |
中危 |
6.5 |
2026-01-07 |
| CVE-2025-14057 |
WordPress Multi-column Tag Map插件存储型XSS漏洞 |
中危 |
4.4 |
2026-01-07 |
| CVE-2025-14053 |
WordPress Wish To Go插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-14028 |
WordPress Contact Us Simple Form插件存储型XSS漏洞 |
中危 |
4.4 |
2026-01-07 |
| CVE-2025-13990 |
WordPress Mamurjor Employee Info插件CSRF漏洞 |
中危 |
4.3 |
2026-01-07 |
| CVE-2025-13974 |
Email Customizer for WooCommerce插件存储型XSS漏洞 |
中危 |
4.4 |
2026-01-07 |
| CVE-2025-13887 |
WordPress AI BotKit插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13849 |
WordPress Cool YT Player插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13848 |
WordPress STM Gallery插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13847 |
PhotoFade插件存储型XSS漏洞(CVE-2025-13847) |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13841 |
WordPress Smart App Banners插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13801 |
WordPress Yoco Payments插件路径遍历漏洞 |
高危 |
7.5 |
2026-01-07 |
| CVE-2025-13722 |
WordPress Fluent Forms插件未授权表单创建漏洞 |
中危 |
5.3 |
2026-01-07 |
| CVE-2025-13694 |
WordPress AA Block Country插件IP欺骗漏洞 |
中危 |
5.3 |
2026-01-07 |
| CVE-2025-13667 |
WordPress WP Recipe Manager插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13657 |
WordPress HelpDesk contact form插件CSRF漏洞 |
中危 |
4.3 |
2026-01-07 |
| CVE-2025-13531 |
WordPress Stylish Order Form Builder存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13529 |
WordPress Unify插件未授权选项删除漏洞 |
中危 |
5.3 |
2026-01-07 |
| CVE-2025-13527 |
WordPress xShare插件CSRF漏洞导致设置重置 |
中危 |
4.3 |
2026-01-07 |
| CVE-2025-13521 |
WordPress WP Status Notifier插件CSRF漏洞 |
中危 |
4.3 |
2026-01-07 |
| CVE-2025-13520 |
MTCaptcha WordPress插件CSRF漏洞 |
中危 |
4.3 |
2026-01-07 |
| CVE-2025-13519 |
WordPress SVG Map Plugin CSRF漏洞 |
中危 |
6.1 |
2026-01-07 |
| CVE-2025-13497 |
Recras WordPress插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13496 |
WordPress Moosend Landing Pages插件越权删除API密钥漏洞 |
中危 |
5.3 |
2026-01-07 |
| CVE-2025-13493 |
| WordPress Latest Registered Users插件未授权用户数据导出漏洞 |
高危 |
7.5 |
2026-01-07 |
| CVE-2025-13419 |
WordPress Front Editor插件未授权媒体删除漏洞 |
中危 |
5.3 |
2026-01-07 |
| CVE-2025-13418 |
WordPress Responsive Pricing Table插件存储型XSS漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2025-13371 |
WordPress MoneySpace插件敏感信息泄露漏洞 |
高危 |
8.6 |
2026-01-07 |
| CVE-2025-13369 |
WordPress Premmerce WooCommerce Customers Manager反... |
中危 |
6.1 |
2026-01-07 |
| CVE-2025-13151 |
libtasn1 asn1_expend_octet_string栈缓冲区溢出漏洞 |
高危 |
7.5 |
2026-01-07 |
| CVE-2025-12958 |
WordPress Rankology插件权限绕过漏洞 |
低危 |
2.7 |
2026-01-07 |
| CVE-2025-12776 |
Commvault WebConsole Report Builder存储型XSS漏洞 |
中危 |
5.4 |
2026-01-07 |
| CVE-2025-12648 |
WordPress WP-Members插件未授权文件访问漏洞 |
中危 |
5.3 |
2026-01-07 |
| CVE-2025-12543 |
Undertow HTTP服务器Host头验证不当漏洞 |
严重 |
9.6 |
2026-01-07 |
| CVE-2025-12540 |
WordPress ShareThis Google Analytics插件敏感信息泄露漏洞 |
中危 |
4.7 |
2026-01-07 |
| CVE-2025-12449 |
| aBlocks WordPress插件权限绕过漏洞导致敏感信息泄露 |
中危 |
5.4 |
2026-01-07 |
| CVE-2025-12030 |
WordPress ACF to REST API插件IDOR漏洞 |
中危 |
4.3 |
2026-01-07 |
| CVE-2025-11877 |
WordPress User Activity Log插件未授权选项更新漏洞 |
高危 |
7.5 |
2026-01-07 |
| CVE-2025-11235 |
Progress MOVEit Transfer 未验证密码更改漏洞 |
低危 |
3.7 |
2026-01-07 |
| CVE-2025-0980 |
Nokia SR Linux JSON-RPC服务未授权访问漏洞 |
中危 |
6.4 |
2026-01-07 |
| CVE-2024-14020 |
Carboneio Carbone 原型链污染漏洞 |
中危 |
5.0 |
2026-01-07 |
| CVE-2023-7333 |
bluelabsio records-mover SQL注入漏洞 |
中危 |
5.3 |
2026-01-07 |
| CVE-2026-21677 |
iccDEV CIccCLUT::Init未定义行为漏洞 |
高危 |
8.8 |
2026-01-06 |
| CVE-2026-21676 |
iccDEV CIccMBB::Validate 堆缓冲区溢出漏洞 |
高危 |
8.8 |
2026-01-06 |
| CVE-2026-21675 |
iccDEV CIccXform::Create() Use After Free严重漏洞 |
严重 |
9.8 |
2026-01-06 |
| CVE-2026-21674 |
iccDEV库XML MPE解析路径内存泄漏漏洞 |
低危 |
3.3 |
2026-01-06 |
| CVE-2026-21673 |
iccDEV ICC颜色管理配置文件解析溢出漏洞 |
高危 |
7.8 |
2026-01-06 |
| CVE-2026-21507 |
iccDEV CalcProfileID函数无限循环拒绝服务漏洞 |
高危 |
7.5 |
2026-01-06 |
| CVE-2026-21494 |
iccDEV库CIccTagLut8::Validate()堆缓冲区溢出漏洞 |
中危 |
6.1 |
2026-01-06 |
| CVE-2026-21493 |
iccDEV CIccSingleSampledeCurveXml类类型混淆漏洞 |
中危 |
6.6 |
2026-01-06 |