社区警报 主题编辑器 CSRF 使 RCE 成为可能(CVE20259890)
WordPress 主题编辑器插件 <= 3.0 - 跨站请求伪造到远程代码执行漏洞
香港安全警报 WordPress 地图注入 (CVE202511365)
WordPress WP Google Map 插件 <= 1.0 - 经过身份验证的 (贡献者+) SQL 注入漏洞
香港安全警报快速特色图像缺陷(CVE202511176)
WordPress Quick Featured Images plugin <= 13.7.2 - Insecure Direct Object Reference to Image Manipulation vulnerability
香港安全咨询 WordPress BlindMatrix LFI (CVE202510406)
WordPress BlindMatrix 电子商务插件 < 3.1 - 贡献者+ LFI 漏洞
Community Notice Felan Plugin Hardcoded Credentials(CVE202510850)
WordPress Felan Framework plugin <= 1.1.4 - Hardcoded Credentials vulnerability
Public Security Notice Truelysell Password Vulnerability(CVE202510742)
WordPress Truelysell Core plugin <= 1.8.6 - Unauthenticated Arbitrary User Password Change vulnerability
Community Alert Felan Framework Unauthorised Plugin Activation(CVE202510849)
WordPress Felan Framework plugin <= 1.1.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Activation/Deactivation via process_plugin_actions vulnerability
香港安全警报 BookWidgets XSS(CVE202510139)
WordPress WP BookWidgets 插件 <= 0.9 - 经过身份验证的(贡献者+)存储跨站脚本漏洞
社区公告 WPBakery 存储型跨站脚本攻击 (CVE202511160)
WordPress WPBakery 页面构建器插件 <= 8.6.1 - 通过自定义 JS 模块的存储型跨站脚本攻击漏洞
香港警报简单SEO存储型XSS(CVE202510357)
WordPress 简单SEO插件 < 2.0.32 - 贡献者+ 存储型XSS漏洞
Chinese (China) 
English 
Chinese (Hong Kong)