| CVE-2025-13362 |
Norby AI WordPress插件CSRF漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-13360 |
WordPress Quantic Social Image Hover插件CSRF漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-13313 |
WordPress CRM Memberships 密码重置权限提升漏洞 |
严重 |
9.8 |
2025-12-05 |
| CVE-2025-13312 |
WordPress CRM Memberships插件未授权访问漏洞 |
中危 |
5.3 |
2025-12-05 |
| CVE-2025-13144 |
WordPress ContentStudio插件CSRF漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-13066 |
WordPress Demo Importer Plus插件任意文件上传漏洞 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-13006 |
WordPress SurveyFunnel插件REST API未授权敏感信息泄露漏洞 |
中危 |
5.3 |
2025-12-05 |
| CVE-2025-12879 |
WordPress User Generator插件CSRF漏洞导致管理员账户创建 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-12876 |
| Projectopia WordPress插件未授权文件删除漏洞 |
中危 |
5.3 |
2025-12-05 |
| CVE-2025-12851 |
WordPress My auctions allegro插件本地文件包含漏洞 |
高危 |
8.1 |
2025-12-05 |
| CVE-2025-12850 |
WordPress My auctions allegro插件SQL注入漏洞 |
高危 |
7.5 |
2025-12-05 |
| CVE-2025-12804 |
WordPress Booking Calendar插件存储型XSS漏洞 |
中危 |
6.4 |
2025-12-05 |
| CVE-2025-12417 |
WordPress SurveyFunnel插件存储型XSS漏洞 |
中危 |
6.4 |
2025-12-05 |
| CVE-2025-12374 |
WordPress User Verification插件身份验证绕过漏洞 |
严重 |
9.8 |
2025-12-05 |
| CVE-2025-12373 |
Torod WordPress插件CSRF漏洞可修改插件设置 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12370 |
WordPress Takeads插件授权绕过漏洞 (CVE-2025-12370) |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12368 |
WordPress Sermon Manager插件sermon-views短代码存储型XSS漏洞(... |
中危 |
6.4 |
2025-12-05 |
| CVE-2025-12355 |
WordPress Payaza插件AJAX端点权限绕过漏洞 |
中危 |
5.3 |
2025-12-05 |
| CVE-2025-12354 |
WordPress Live CSS Preview插件权限绕过漏洞(CVE-2025-12354) |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12191 |
WordPress PDF Catalog for WooCommerce存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-12190 |
WordPress Image Optimizer CSRF漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12189 |
WordPress Bread Butter插件CSRF漏洞导致RCE |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12186 |
WordPress Weekly Planner插件存储型XSS漏洞 |
中危 |
4.4 |
2025-12-05 |
| CVE-2025-12181 |
WordPress ContentStudio插件任意文件上传漏洞 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-12165 |
WordPress Webcake插件权限绕过漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12163 |
WordPress Omnipress插件SVG上传存储型XSS漏洞 |
中危 |
6.4 |
2025-12-05 |
| CVE-2025-12154 |
WordPress Auto Thumbnailer插件任意文件上传漏洞 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-12153 |
WordPress Featured Image via URL插件任意文件上传漏洞 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-12133 |
WordPress EPROLO插件权限绕过漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12130 |
WC Vendors插件CSRF漏洞可删除供应商产品 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12128 |
WordPress Hide Categories Or Products On Shop Page... |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-12124 |
WordPress FitVids插件存储型XSS漏洞 |
中危 |
4.4 |
2025-12-05 |
| CVE-2025-12093 |
| Voidek Employee Portal插件未授权访问漏洞 |
中危 |
5.3 |
2025-12-05 |
| CVE-2025-11759 |
WordPress XCloner插件CSRF漏洞可导致备份数据泄露 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-10055 |
WordPress Time Sheets插件CSRF跨站请求伪造漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2024-9183 |
GitLab高权限用户凭证泄露漏洞 |
高危 |
7.7 |
2025-12-05 |
| CVE-2020-36882 |
Flexsense DiskBoss 7.7.14 任意文件上传导致拒绝服务漏洞 |
高危 |
7.5 |
2025-12-05 |
| CVE-2020-36881 |
Flexsense DiskBoss 7.7.14输入目录组件缓冲区溢出漏洞 |
高危 |
7.8 |
2025-12-05 |
| CVE-2020-36880 |
Flexsense DiskBoss 7.7.14 本地缓冲区溢出漏洞 |
高危 |
7.8 |
2025-12-05 |
| CVE-2016-20023 |
CKFinder 任意文件读取漏洞 |
中危 |
5.0 |
2025-12-05 |
| CVE-2025-9127 |
Pure Storage PX Enterprise敏感信息日志泄露漏洞 |
中危 |
5.5 |
2025-12-04 |
| CVE-2025-6946 |
WatchGuard Firebox IPS模块存储型XSS漏洞 |
中危 |
4.8 |
2025-12-04 |
| CVE-2025-66576 |
Remote Keyboard Desktop 1.0.1 远程代码执行漏洞 |
严重 |
9.8 |
2025-12-04 |
| CVE-2025-66575 |
VeeVPN 未引号服务路径权限提升漏洞 |
高危 |
7.8 |
2025-12-04 |
| CVE-2025-66574 |
| TranzAxis存储型XSS漏洞允许窃取会话Cookie |
中危 |
5.4 |
2025-12-04 |
| CVE-2025-66573 |
Solstice Pod API会话密钥泄露漏洞 |
高危 |
7.5 |
2025-12-04 |
| CVE-2025-66564 |
Sigstore Timestamp Authority O(n)内存分配拒绝服务漏洞 |
高危 |
7.5 |
2025-12-04 |
| CVE-2025-66563 |
Monkeytype XSS漏洞 |
中危 |
6.1 |
2025-12-04 |
| CVE-2025-66561 |
SysReptor存储型XSS漏洞 |
高危 |
7.3 |
2025-12-04 |
| CVE-2025-66516 |
Apache Tika XXE漏洞安全事件 |
高危 |
8.4 |
2025-12-04 |