社區警報 Bravis 插件帳戶接管 (CVE20255060)
Plugin Name Bravis User Type of Vulnerability Account takeover vulnerability CVE Number CVE-2025-5060 Urgency High CVE Publish Date…
香港 NGO 警報 社交登錄身份驗證繞過(CVE20255821)
WordPress Case Theme User plugin <= 1.0.3 - Authentication Bypass via Social Login vulnerability
Hong Kong Security Advisory Ogulo 360 XSS(CVE20259131)
Plugin Name Ogulo – 360° Tour Type of Vulnerability Authenticated Stored XSS CVE Number CVE-2025-9131 Urgency Low CVE…
Hong Kong Security Advisory Ni WooCommerce Vulnerability(CVE20257827)
WordPress Ni WooCommerce Customer Product Report plugin <= 1.2.4 - Missing Authorization to Authenticated (Subscriber+) Settings Update vulnerability
Hong Kong Security Alert ShortcodeHub Stored XSS(CVE20257957)
WordPress ShortcodeHub plugin <= 1.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via author_link_target Parameter vulnerability
社區警報 WS Addons 中的已驗證 XSS(CVE20258062)
WordPress WS Theme Addons 插件 <= 2.0.0 - 已驗證(貢獻者+)通過 ws_weather 短代碼的存儲跨站腳本漏洞
通告 跨站請求偽造恢復插件(CVE20257839)
WordPress 恢復永久刪除文章或頁面數據插件 <= 1.0 - 跨站請求偽造漏洞
香港安全警報 WordPress 餵食刪除 (CVE20257828)
WordPress WP 過濾和合併 RSS 餵食插件 <= 0.4 - 缺少對經過身份驗證的 (貢獻者+) 餵食刪除的授權漏洞
香港安全諮詢 Talroo 插件 XSS(CVE20258281)
WordPress WP Talroo 插件 <= 2.4 - 反射型 XSS 漏洞
香港安全警報 Silencesoft RSS CSRF(CVE20257842)
WordPress Silencesoft RSS Reader 插件 <= 0.6 - 跨站請求偽造至 RSS Feed 刪除漏洞
Chinese (Hong Kong) 
English 
Chinese (China)