HK Security Advisory Events Calendar SQL Injection(CVE20259807)
WordPress The Events Calendar plugin <= 6.15.1 - Unauthenticated SQL Injection vulnerability
Hong Kong Security Alert Enhanced BibliPlug XSS(CVE20259855)
WordPress Enhanced BibliPlug plugin <= 1.3.8 - Authenticated (Contirbutor+) Stored Cross-Site Scripting vulnerability
HK Security Advisory LH Signing Plugin CSRF(CVE20259633)
WordPress LH Signing plugin <= 2.83 - Cross-Site Request Forgery vulnerability
Stored XSS in AzureCurve BBCode Plugin(CVE20258398)
WordPress azurecurve BBCode plugin <= 2.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via url Shortcode vulnerability
香港安全警报 ThemeLoom 小部件 XSS (CVE20259861)
WordPress ThemeLoom 小部件插件 <= 1.8.5 - 已验证 (贡献者+) 存储型跨站脚本漏洞
HK Security Advisory Certifica Stored XSS(CVE20258316)
WordPress Certifica WP plugin <= 3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via evento Parameter vulnerability
Hong Kong Security Alert Elementor Addons XSS(CVE20258215)
WordPress Responsive Addons for Elementor plugin <= 1.7.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability
香港安全咨询CatFolders SQL注入(CVE20259776)
WordPress CatFolders插件 <= 2.5.2 - 经过身份验证的(作者+)通过CSV导入的SQL注入漏洞
香港安全非政府组织警报PagBank PagSeguro SQL(CVE202510142)
WordPress PagBank / PagSeguro Connect插件 <= 4.44.3 - 已验证的(商店经理+)SQL注入漏洞
社区安全咨询PeachPay SQL注入(CVE20259463)
WordPress PeachPay Payments插件 <= 1.117.5 - 通过order_by参数的认证(贡献者+)SQL注入漏洞
Chinese (China) 
English 
Chinese (Hong Kong)