Community Advisory Real Spaces Administrator Escalation(CVE20256758)
WordPress Real Spaces - WordPress Properties Directory Theme plugin <= 3.6 - Unauthenticated Privilege Escalation to Administrator via 'imic_agent_register' vulnerability
Community Alert Cloudflare Image Resizing Exploit(CVE20258723)
WordPress Cloudflare Image Resizing plugin <= 1.5.6 - Missing Authentication to Unauthenticated Remote Code Execution via rest_pre_dispatch Hook vulnerability
Hong Kong Security Advisory Flexible Maps XSS(CVE20258622)
WordPress Flexible Maps plugin <= 1.18.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Flexible Maps Shortcode vulnerability
香港安全警報實際空間升級(CVE20258218)
WordPress 實際空間 - WordPress 屬性目錄主題插件 <= 3.5 - 經過身份驗證的 (訂閱者+) 權限提升至管理員,通過 'change_role_member' 漏洞
香港安全警報 媒體庫刪除(CVE20258357)
WordPress 媒體庫助手插件 <= 3.27 - 經身份驗證(作者+)的有限文件刪除漏洞
Community Alert Emmet Plugin XSS Threat(CVE202549894)
WordPress WP Emmet plugin <= 0.3.4 - Cross Site Scripting (XSS) vulnerability
香港安全通知 Elizaibots XSS 漏洞 (CVE202549893)
WordPress Elizaibots 插件 <= 1.0.2 - 跨站腳本攻擊 (XSS) 漏洞
HK NGO warns WordPress CSRF Object Injection(CVE202549895)
WordPress ServerBuddy by PluginBuddy.com plugin <= 1.0.5 - CSRF to PHP Object Injection vulnerability
Hong Kong Security WordPress Profile Builder XSS(CVE20258896)
Plugin Name Profile Builder Type of Vulnerability Stored XSS CVE Number CVE-2025-8896 Urgency Medium CVE Publish Date 2025-08-16…
WordPress BetterDocs 隱私缺陷暴露私人帖子(CVE20257499)
插件名稱 BetterDocs 漏洞類型 存取控制破壞 CVE 編號 CVE-2025-7499 緊急程度 低 CVE 發布日期 2025-08-16…
Chinese (Hong Kong) 
English 
Chinese (China)