公民安全咨询主题导入器CSRF风险(CVE202510312)
WordPress主题导入器插件 <= 1.0 - 跨站请求伪造漏洞
HK NGO Warning SSRF in Pz LinkCard(CVE20258594)
WordPress Pz-LinkCard plugin < 2.5.7 - Contributor+ SSRF vulnerability
Hong Kong Security Alert Insecure Image Access(CVE202511176)
WordPress Quick Featured Images plugin <= 13.7.2 - Insecure Direct Object Reference to Image Manipulation vulnerability
安全通知 OwnID 身份验证绕过 (CVE202510294)
WordPress OwnID 无密码登录插件 <= 1.3.4 - 身份验证绕过漏洞
Hong Kong Security Advisory Tariffuxx SQL Injection(CVE202510682)
WordPress TARIFFUXX plugin <= 1.4 - Authenticated (Contributor+) SQL Injection via tariffuxx_configurator Shortcode vulnerability
Hong Kong NGO Alert Zip Attachment Disclosure(CVE202511701)
WordPress Zip Attachments plugin <= 1.6 - Missing Authorization to Unauthenticated Private And Password-Protected Posts Attachment Disclosure vulnerability
Hong Kong Civil Society Alert BookWidgets XSS(CVE202510139)
WordPress WP BookWidgets 插件 <= 0.9 - 经过身份验证的(贡献者+)存储跨站脚本漏洞
Community Advisory Authenticated Editor SQL Injection onOffice(CVE202510045)
WordPress onOffice for WP-Websites 插件 <= 5.7 - 经过身份验证的 (编辑+) SQL 注入漏洞
Community Alert FunKItools CSRF Threatens Site Settings(CVE202510301)
WordPress FunKItools plugin <= 1.0.2 - Cross-Site Request Forgery to Settings Update vulnerability
Security Advisory Ova Advent Plugin XSS Risk(CVE20258561)
WordPress Ova Advent plugin <= 1.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
Chinese (China) 
English 
Chinese (Hong Kong)