社区建议 PixelYourSite 插件 LFI 风险(CVE202510723)
WordPress PixelYourSite插件 < 11.1.2 - 管理员+ LFI漏洞
香港安全警报 ZoloBlocks 弹出窗口漏洞 (CVE202512134)
WordPress ZoloBlocks 插件 <= 2.3.11 - 缺少对未认证弹出窗口启用/禁用的授权漏洞
香港安全警报 WordPress 模板 CSRF (CVE202512072)
WordPress 为特定模板禁用内容编辑器插件 <= 2.0 - 跨站请求伪造到模板配置更新漏洞
Community Alert WordPress RapidResult SQL Injection(CVE202510748)
WordPress RapidResult plugin <= 1.2 - Authenticated (Contributor+) SQL Injection vulnerability
安全公告 任意订单退款漏洞 (CVE202510570)
WordPress WooCommerce插件的灵活退款和退货订单 <= 1.0.38 - 缺少对已认证(订阅者+)任意订单退款的授权漏洞
Urgent Alert PixelYourSite GDPR Settings Exploited(CVE202510588)
WordPress PixelYourSite plugin <= 11.1.2 – Cross-Site Request Forgery to GDPR Options Modification vulnerability
Security Advisory Optimole Image IDOR Vulnerability(CVE202511519)
WordPress Image optimization service by Optimole plugin <= 4.1.0 - Insecure Direct Object Reference to Authenticated (Author+) Media Offload vulnerability
Community Alert LearnPress Unauthenticated Database Access(CVE202511372)
WordPress LearnPress – WordPress LMS Plugin plugin <= 4.2.9.3 - Missing Authorization to Unauthenticated Database Table Manipulation vulnerability
主题编辑器 CSRF 风险 远程代码执行 (CVE20259890)
WordPress 主题编辑器插件 <= 3.0 - 跨站请求伪造到远程代码执行漏洞
Urgent Advisory LearnPress Database Authorization Flaw(CVE202511372)
WordPress LearnPress – WordPress LMS Plugin plugin <= 4.2.9.3 - Missing Authorization to Unauthenticated Database Table Manipulation vulnerability
Chinese (China) 
English 
Chinese (Hong Kong)