HK NGO Alerts WordPress Earnware Connect XSS(CVE20257651)
WordPress Earnware Connect plugin <= 1.0.73 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
WordPress 用户元数据 CSRF 暴露存储的 XSS (CVE20257688)
WordPress 添加用户元数据插件 <= 1.0.1 - 跨站请求伪造到存储的跨站脚本漏洞
香港安全警报 WordPress LatestCheckins 缺陷(CVE20257683)
WordPress LatestCheckins 插件 <= 1 - 跨站请求伪造到存储的跨站脚本漏洞
香港安全 NGO 警报未认证文件上传 (CVE20256679)
WordPress Bit Form – 联系表单插件 <= 2.20.3 - 未认证的任意文件上传漏洞
香港安全警报 WordPress 访问缺陷(CVE202549895)
WordPress 学校管理插件 <= 93.2.0 - 破损的访问控制漏洞
香港安全 WordPress 视频插件访问漏洞 (CVE202549432)
WordPress 终极视频播放器插件 <= 10.1 - 访问控制失效漏洞
Hong Kong Security Alerts WordPress School IDOR(CVE202549896)
WordPress School Management Plugin <= 93.1.0 - Insecure Direct Object References (IDOR) Vulnerability
(CVE202549898)
WordPress School Management Plugin <= 93.2.0 - SQL Injection Vulnerability
Hong Kong NGO Alerts WordPress Pricing Vulnerability(CVE20257662)
Plugin Name Gestion de tarifs Type of Vulnerability Authenticated SQL Injection CVE Number CVE-2025-7662 Urgency Low CVE Publish…
香港 NGO 报告 Radius Blocks XSS (CVE20255844)
WordPress Radius Blocks 插件 <= 2.2.1 - 经过身份验证的 (贡献者+) 存储型跨站脚本漏洞通过 subHeadingTagName 参数
Chinese (China) 
English 
Chinese (Hong Kong)