香港咨询TopBar CSRF漏洞(CVE202510300)
WordPress TopBar插件 <= 1.0.0 - 跨站请求伪造到设置更新漏洞
Community Alert Ova Advent Stored XSS(CVE20258561)
WordPress Ova Advent plugin <= 1.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
Hong Kong Security Alert File Deletion Risk(CVE202511692)
WordPress Zip Attachments plugin <= 1.6 - Missing Authorization to Limited File Deletion vulnerability
Community Alert Flex QR Plugin Upload Risk(CVE202510041)
WordPress Flex QR Code Generator plugin <= 1.2.5 - Unauthenticated Arbitrary File Upload vulnerability
Community Alert OwnID Authentication Bypass(CVE202510294)
WordPress OwnID 无密码登录插件 <= 1.3.4 - 身份验证绕过漏洞
Security Alert WordPress Zip Attachment Exposure(CVE202511701)
WordPress Zip Attachments plugin <= 1.6 - Missing Authorization to Unauthenticated Private And Password-Protected Posts Attachment Disclosure vulnerability
Public Advisory Theme Importer CSRF Vulnerability(CVE202510312)
WordPress主题导入器插件 <= 1.0 - 跨站请求伪造漏洞
Hong Kong Security Alert Lisfinity Privilege Escalation(CVE20256042)
WordPress Lisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme plugin <= 1.4.0 - Unauthenticated Privilege Escalation to Editor vulnerability
Oceanpayment Plugin Permits Unauthenticated Order Status Changes(CVE202511728)
WordPress Oceanpayment CreditCard Gateway plugin <= 6.0 - Missing Authentication to Unauthenticated Order Status Update vulnerability
Security Advisory Dynamically Display Posts SQL Injection(CVE202511501)
WordPress Dynamically Display Posts plugin <= 1.1 - Unauthenticated SQL Injection vulnerability
Chinese (China) 
English 
Chinese (Hong Kong)