Civic 网络安全警报 onOffice SQL 注入 (CVE202510045)
WordPress onOffice for WP-Websites 插件 <= 5.7 - 经过身份验证的 (编辑+) SQL 注入漏洞
Hong Kong Security Advisory Shortcode Button XSS(CVE202510194)
WordPress Shortcode Button plugin <= 1.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Hong Kong Security Advisory Theme Importer CSRF(CVE202510312)
WordPress主题导入器插件 <= 1.0 - 跨站请求伪造漏洞
Community Alert Digiseller Plugin Authenticated XSS(CVE202510141)
WordPress Digiseller plugin <= 1.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Hong Kong Security Alert SSO Data Exposure(CVE202510648)
WordPress Login with YourMembership - YM SSO Login plugin <= 1.1.7 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'moym_display_test_attributes' vulnerability
Hong Kong Security Notice FunKItools CSRF Vulnerability(CVE202510301)
WordPress FunKItools plugin <= 1.0.2 - Cross-Site Request Forgery to Settings Update vulnerability
Hong Kong Security Advisory WordPress Image Exposure(CVE202511176)
WordPress Quick Featured Images plugin <= 13.7.2 - Insecure Direct Object Reference to Image Manipulation vulnerability
Community Security Alert External Login SQL Injection(CVE202511177)
WordPress External Login plugin <= 1.11.2 - Unauthenticated SQL Injection via log vulnerability
HK Security Advisory Social Login Stored XSS(CVE202510140)
WordPress Quick Social Login plugin <= 1.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Hong Kong Cybersecurity Alert onOffice SQL Injection(CVE202510045)
WordPress onOffice for WP-Websites 插件 <= 5.7 - 经过身份验证的 (编辑+) SQL 注入漏洞
Chinese (China) 
English 
Chinese (Hong Kong)