| CVE-2025-64214 |
MasterStudy LMS Pro缺失授权漏洞导致任意内容删除 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-64213 |
MasterStudy LMS Pro敏感信息泄露漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-64209 |
Masterstudy主题未授权访问漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-64207 |
WordPress Jannah主题DOM型XSS漏洞 |
高危 |
7.1 |
2025-12-18 |
| CVE-2025-64206 |
WordPress Jannah主题不安全反序列化漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-64205 |
TieLabs Jannah WordPress主题本地文件包含漏洞 |
高危 |
8.1 |
2025-12-18 |
| CVE-2025-64203 |
WordPress Mailster插件反射型XSS漏洞 |
高危 |
7.1 |
2025-12-18 |
| CVE-2025-64193 |
| XStore主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-64192 |
XStore WordPress主题授权缺失漏洞 |
中危 |
6.3 |
2025-12-18 |
| CVE-2025-64191 |
XStore主题反射型XSS漏洞 |
高危 |
7.1 |
2025-12-18 |
| CVE-2025-64189 |
XStore Core插件反射型XSS漏洞 |
高危 |
7.1 |
2025-12-18 |
| CVE-2025-64188 |
PenciDesign Soledad主题权限提升漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-63951 |
RPi-Jukebox-RFID不安全反序列化漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-63950 |
Twittodon download.php不安全反序列化漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-63949 |
yohanawi酒店管理系统反射型XSS漏洞 |
中危 |
6.1 |
2025-12-18 |
| CVE-2025-63948 |
phpMsAdmin database_mode.php SQL注入漏洞 |
中危 |
5.4 |
2025-12-18 |
| CVE-2025-63947 |
phpMsAdmin 2.2 反射型XSS漏洞 |
中危 |
5.4 |
2025-12-18 |
| CVE-2025-63757 |
FFmpeg libswscale整数溢出漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-63391 |
Open-WebUI /api/config身份认证绕过漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-63390 |
AnythingLLM v1.8.5身份验证绕过漏洞 |
中危 |
5.3 |
2025-12-18 |
| CVE-2025-63389 |
Ollama平台API认证绕过漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-63388 |
Dify CORS配置错误导致敏感数据泄露 |
严重 |
9.1 |
2025-12-18 |
| CVE-2025-63387 |
Dify v1.9.1 /console/api/system-features 未授权访问漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-63386 |
Dify CORS跨域资源配置错误漏洞 |
严重 |
9.1 |
2025-12-18 |
| CVE-2025-6326 |
AncoraThemes Inset主题PHP远程文件包含漏洞 |
高危 |
8.1 |
2025-12-18 |
| CVE-2025-6324 |
WordPress Easy Invoice插件DOM型XSS漏洞 |
高危 |
7.1 |
2025-12-18 |
| CVE-2025-63043 |
Post Grid插件IDOR授权绕过漏洞 |
中危 |
5.3 |
2025-12-18 |
| CVE-2025-63039 |
ListingPro主题缺失授权访问控制漏洞 |
中危 |
6.5 |
2025-12-18 |
| CVE-2025-63002 |
WordPress Sermon Manager插件访问控制绕过漏洞 |
中危 |
5.3 |
2025-12-18 |
| CVE-2025-62998 |
WP AI CoPilot插件敏感数据泄露漏洞 |
中危 |
5.0 |
2025-12-18 |
| CVE-2025-62961 |
Sparkle FSE主题越权访问漏洞 |
中危 |
5.4 |
2025-12-18 |
| CVE-2025-62960 |
Construction Light主题缺失授权漏洞 |
中危 |
5.4 |
2025-12-18 |
| CVE-2025-62004 |
BullWall SIP 启动时序认证绕过漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-62003 |
BullWall Server Intrusion Protection MFA检查延迟绕过漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-62002 |
BullWall Ransomware Containment检测阈值绕过漏洞 |
中危 |
4.3 |
2025-12-18 |
| CVE-2025-62001 |
BullWall Ransomware Containment 目录排除绕过漏洞 |
高危 |
8.8 |
2025-12-18 |
| CVE-2025-62000 |
BullWall Ransomware Containment检测绕过漏洞 |
高危 |
7.1 |
2025-12-18 |
| CVE-2025-60182 |
Support Board 插件反射型XSS漏洞 |
高危 |
7.1 |
2025-12-18 |
| CVE-2025-60180 |
WP Gravity Forms Salesforce插件反序列化对象注入漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-60178 |
WP Gravity Forms HubSpot插件反序列化代码执行漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-60174 |
WP Gravity Forms Constant Contact插件反序列化漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-60091 |
WP Gravity Forms Zoho CRM 反序列化漏洞导致远程代码执行 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-60090 |
WP Gravity Forms Insightly插件反序列化远程代码执行漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-60089 |
WP Gravity Forms FreshDesk Plugin 反序列化漏洞 |
严重 |
9.8 |
2025-12-18 |
| CVE-2025-60088 |
WordPress WebinarIgnition插件访问控制漏洞 |
中危 |
6.5 |
2025-12-18 |
| CVE-2025-60086 |
WordPress WP Voting Contest插件缺失授权漏洞 |
高危 |
7.5 |
2025-12-18 |
| CVE-2025-60084 |
WordPress pdf-for-elementor-forms插件反序列化漏洞 |
高危 |
8.8 |
2025-12-18 |
| CVE-2025-60083 |
WordPress PDF Invoice Builder for WooCommerce插件反序列... |
高危 |
8.8 |
2025-12-18 |
| CVE-2025-60082 |
WordPress PDF for WPForms插件反序列化漏洞 |
高危 |
8.8 |
2025-12-18 |
| CVE-2025-60081 |
WordPress PDF for Contact Form 7插件反序列化漏洞 |
高危 |
8.8 |
2025-12-18 |