香港安全 Avatar 遷移授權缺陷(CVE20258482)
WordPress Simple Local Avatars plugin <= 2.8.4 - Missing Authorization to Authenticated (Subscriber+) Avatar Migration vulnerability
香港安全 WordPress 股票報價 XSS(CVE20258688)
WordPress Inline Stock Quotes plugin <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via stock Shortcode vulnerability
香港安全 NGO 警告 WordPress XSS(CVE20258685)
WordPress Wp chart generator plugin <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpchart Shortcode vulnerability
GMap Venturit 存儲 XSS 警報(香港)(CVE20258568)
WordPress GMap - Venturit 插件 <= 1.1 - 經過身份驗證的 (貢獻者+) 通過 'h' 參數漏洞的存儲跨站腳本
AnWP 足球聯賽中的身份驗證 CSV 注入 (CVE20258767)
WordPress AnWP 足球聯賽插件 <= 0.16.17 - 身份驗證 (管理員+) CSV 注入漏洞
香港 WordPress UiCore 未經授權的文件讀取 (CVE20256253)
WordPress UiCore Elements 插件 <= 1.3.0 - 缺少對未經身份驗證的任意文件讀取的授權漏洞
HK Security Alerts Elementor Image Import Flaw(CVE20258081)
WordPress Elementor plugin <= 3.30.2 - Authenticated (Administrator+) Arbitrary File Read via Image Import vulnerability
Hong Kong security NGO flags CBX CSRF(CVE20257965)
WordPress CBX Restaurant Booking plugin <= 1.2.1 - Plugin Reset via CSRF vulnerability
香港WordPress The7存儲型XSS警報(CVE20257726)
WordPress The7插件 <= 12.6.0 - 經過身份驗證的(貢獻者+)通過標題和data-dt-img-description屬性存儲的跨站腳本漏洞
Hong Kong Security Unauthenticated SQL Injection CleverReach(CVE20257036)
WordPress CleverReach WP plugin <= 1.5.20 - Unauthenticated SQL Injection via title Parameter vulnerability
Chinese (Hong Kong) 
English 
Chinese (China)