| CVE-2025-67553 |
WordPress Advanced FAQ Manager DOM型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67552 |
Walker Core插件DOM型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67551 |
WordPress Wappointment插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67550 |
WordPress Donation Thermometer插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67549 |
WordPress oik插件DOM型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67548 |
WordPress WP Delicious插件缺失授权漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67545 |
FireBox WordPress插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67544 |
Shopkeeper Extender 存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67543 |
WordPress Essential Widgets插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67542 |
WordPress Multi-Step Checkout插件DOM型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67541 |
WordPress WP-ShowHide插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67540 |
Wealcoder Animation Addons for Elementor 缺少授权漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67539 |
Select Core插件DOM型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67538 |
JNews Gallery插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67537 |
WordPress ThirstyAffiliates插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67536 |
| WordPress LearnPress插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-67535 |
WP Maps插件不信任数据反序列化导致对象注入漏洞 |
中危 |
6.6 |
2025-12-09 |
| CVE-2025-67534 |
WordPress Rencontre插件存储型XSS漏洞 |
高危 |
7.1 |
2025-12-09 |
| CVE-2025-67533 |
| Themify Portfolio Post插件存储型XSS漏洞 |
高危 |
7.1 |
2025-12-09 |
| CVE-2025-67532 |
Hara WordPress主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67531 |
WordPress Turitor主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67530 |
WordPress Besa主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67529 |
WordPress Fashion主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67528 |
Urna主题PHP远程文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67527 |
Digiqole主题PHP本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67526 |
WordPress Sailing主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67525 |
WordPress ekommart主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67524 |
Jobmonster Elementor Addon本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67523 |
WordPress Exhibz主题本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67522 |
NooTheme Jobmonster本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67521 |
Select Core插件本地文件包含漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-67520 |
WordPress Media Library Tools插件SQL注入漏洞 |
高危 |
7.6 |
2025-12-09 |
| CVE-2025-67519 |
WordPress Ninja Tables插件SQL注入漏洞 |
高危 |
7.6 |
2025-12-09 |
| CVE-2025-67518 |
WordPress Accordion Slider PRO插件SQL注入漏洞 |
高危 |
8.5 |
2025-12-09 |
| CVE-2025-67517 |
WordPress ArtPlacer Widget插件SQL注入漏洞 |
高危 |
8.5 |
2025-12-09 |
| CVE-2025-67516 |
WordPress Store Locator插件SQL注入漏洞 |
高危 |
8.5 |
2025-12-09 |
| CVE-2025-67515 |
Mikado-Themes Wilmër主题本地文件包含漏洞 |
高危 |
8.8 |
2025-12-09 |
| CVE-2025-67504 |
WBCE CMS 弱随机数密码生成漏洞 |
严重 |
9.1 |
2025-12-09 |
| CVE-2025-67496 |
WeGIA 3.5.4及以下版本存储型XSS漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-67495 |
ZITADEL logout端点DOM型XSS漏洞 |
高危 |
8.0 |
2025-12-09 |
| CVE-2025-67494 |
ZITADEL未授权SSRF漏洞可窃取内网数据 |
严重 |
9.3 |
2025-12-09 |
| CVE-2025-67489 |
@vitejs/plugin-rs远程代码执行漏洞 |
严重 |
9.8 |
2025-12-09 |
| CVE-2025-67488 |
| SiYuan importZipMd ZipSlip路径穿越导致任意文件覆盖 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-67487 |
Static Web Server符号链接遍历漏洞 |
高危 |
8.6 |
2025-12-09 |
| CVE-2025-67474 |
WordPress ForumWP插件缺失授权漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-67473 |
CWW Companion插件跨站请求伪造漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-67472 |
| WordPress vcita在线预订日历插件跨站请求伪造漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-67471 |
Quick Contact Form跨站请求伪造漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-67470 |
WordPress Portfolio and Projects插件敏感信息泄露漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-67469 |
WordPress PDF Thumbnail Generator插件跨站请求伪造漏洞 |
中危 |
4.3 |
2025-12-09 |