香港安全警报 WordPress 存储型 XSS(CVE20259077)
WordPress Ultra Addons Lite for Elementor plugin <= 1.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Text Field vulnerability
社区公告 WordPress 调度程序 SQL 注入 (CVE202510582)
WordPress WP 调度程序插件 <= 1.2.0 - 经过身份验证的 (贡献者+) SQL 注入漏洞
香港安全警报WP Dispatcher漏洞(CVE20259212)
WordPress WP Dispatcher插件 <= 1.2.0 - 已验证的(订阅者+)任意文件上传漏洞
香港安全咨询 Flexi 插件 XSS(CVE20259129)
WordPress Flexi 插件 <= 4.28 - 经过身份验证的 (贡献者+) 存储型跨站脚本漏洞通过 flexi-form-tag 短代码
社区警报 JoomSport 目录遍历漏洞 (CVE20257721)
WordPress JoomSport plugin <= 5.7.3 - Unauthenticated Directory Traversal to Local File Inclusion vulnerability
Hong Kong Security Advisory MPWizard CSRF Risk(CVE20259885)
WordPress MPWizard plugin <= 1.2.1 - Cross-Site Request Forgery to Arbitrary Post Deletion vulnerability
Hong Kong Advisory ZoloBlocks Stored XSS Risk(CVE20259075)
WordPress ZoloBlocks plugin <= 2.3.10 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
警报 Managefy 插件信息泄露风险 (CVE202510744)
WordPress 文件管理器、代码编辑器,由 Managefy 插件备份 <= 1.6.1 - 未经身份验证的信息泄露漏洞
香港警报 CSRF 导致存储型 XSS (CVE20259946)
WordPress LockerPress – WordPress Security Plugin plugin <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
社区警报 LatePoint 身份验证绕过风险 (CVE20257038)
WordPress LatePoint plugin <= 5.1.94 - Unauthenticated Authentication Bypass via load_step Function vulnerability
Chinese (China) 
English 
Chinese (Hong Kong)