| CVE-2025-12337 |
Campcodes Retro Basketball Shoes Online Store 1.0 ... |
高危 |
7.3 |
2025-10-28 |
| CVE-2025-12336 |
Campcodes Retro Basketball Shoes Online Store SQL注... |
高危 |
7.3 |
2025-10-28 |
| CVE-2025-12335 |
code-projects E-Commerce Website 1.0 跨站脚本漏洞 |
中危 |
4.3 |
2025-10-28 |
| CVE-2025-12332 |
SourceCodester学生成绩管理系统存储型XSS漏洞 |
低危 |
2.4 |
2025-10-28 |
| CVE-2025-12103 |
Red Hat Openshift AI Service TrustyAI 权限配置错误漏洞 |
中危 |
5.0 |
2025-10-28 |
| CVE-2025-11735 |
WordPress WooCommerce产品过滤器SQL注入漏洞 |
高危 |
7.5 |
2025-10-28 |
| CVE-2025-11375 |
Consul事件端点Content-Length Header拒绝服务漏洞 |
中危 |
6.5 |
2025-10-28 |
| CVE-2025-11374 |
Consul KV端点Content-Length验证错误导致拒绝服务漏洞 |
中危 |
6.5 |
2025-10-28 |
| CVE-2025-10939 |
Keycloak代理路径遍历访问控制绕过漏洞 |
低危 |
3.7 |
2025-10-28 |
| CVE-2025-8432 |
Centreon MBI 默认权限配置错误导致脚本注入漏洞 (CVE-2025-8432) |
高危 |
8.4 |
2025-10-27 |
| CVE-2025-6601 |
GitLab EE访问请求审批工作流未授权访问漏洞 |
低危 |
2.7 |
2025-10-27 |
| CVE-2025-62988 |
Codeless Slider Templates插件SSRF漏洞 |
中危 |
4.9 |
2025-10-27 |
| CVE-2025-62987 |
| Builderall Builder WordPress插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62986 |
WordPress FanBridge signup插件CSRF漏洞导致存储型XSS |
高危 |
7.1 |
2025-10-27 |
| CVE-2025-62985 |
WordPress Simple Pull Quote插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62984 |
WP AdCenter插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62983 |
WordPress Posts By Tag插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62982 |
WordPress Dynamic User Directory插件存储型XSS漏洞 |
中危 |
5.9 |
2025-10-27 |
| CVE-2025-62981 |
- WP Gravity Forms Zoho CRM开放重定向漏洞 |
中危 |
4.7 |
2025-10-27 |
| CVE-2025-62980 |
WordPress Persian Admin Fonts插件访问控制漏洞 |
中危 |
5.4 |
2025-10-27 |
| CVE-2025-62979 |
| ACF to REST API敏感信息泄露漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-62978 |
KiotViet Sync WordPress插件存在访问控制缺陷漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-62977 |
WordPress baiduseo插件缺失授权漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-62976 |
Joovii Sendle Shipping插件授权绕过漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-62975 |
WordPress Raychat插件跨站请求伪造漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-62974 |
CoSchedule Headline Analyzer存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62973 |
WordPress BuddyForms 插件存在缺失授权漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-62972 |
WordPress WebinarPress插件访问控制漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-62971 |
Attesa Extra插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62970 |
WordPress Link Whisper Free插件访问控制漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-62969 |
WordPress NextMove Lite插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62968 |
WordPress WP Last Modified Info插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62967 |
DirectoryPress插件DOM型跨站脚本漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62966 |
Apiki GoCache WordPress插件缺失授权漏洞 |
中危 |
5.4 |
2025-10-27 |
| CVE-2025-62965 |
WordPress Admin Management Xtended插件访问控制漏洞 |
中危 |
5.5 |
2025-10-27 |
| CVE-2025-62964 |
WordPress MDTF插件缺失授权漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-62963 |
Estatik WordPress插件DOM型跨站脚本(XSS)漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62962 |
WordPress CloudSearch插件CSRF漏洞导致存储型XSS |
高危 |
7.1 |
2025-10-27 |
| CVE-2025-62959 |
WordPress ppv-live-webcams插件远程代码执行漏洞 |
严重 |
9.1 |
2025-10-27 |
| CVE-2025-62958 |
WordPress Simple Post Template插件CSRF漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-62957 |
NikanWP WooCommerce Reporting CSRF导致存储型XSS漏洞 |
高危 |
7.1 |
2025-10-27 |
| CVE-2025-62956 |
WordPress Reloadly插件CSRF漏洞导致存储型XSS |
高危 |
7.1 |
2025-10-27 |
| CVE-2025-62954 |
WordPress Revive Old Posts插件授权缺失漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-62953 |
Welcart e-Commerce 缺失授权访问控制漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-62952 |
WordPress ChatBot插件访问控制漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-62951 |
H5P WordPress插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62949 |
BuddyPress Activity Plus Reloaded 存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62948 |
WordPress Date Counter插件存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-62947 |
WordPress Publitio插件敏感信息泄露漏洞 |
中危 |
5.0 |
2025-10-27 |
| CVE-2025-62946 |
WordPress Everest Backup插件缺失授权访问控制漏洞 |
中危 |
5.3 |
2025-10-27 |