浏览 26+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-5092 | Multiple Plugins and Themes <= (Various Versions) - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via lightGallery JavaScript Library | lightgalleryteam | LightGallery WP | Medium | 6.4 | 2025-11-20 06:38:42 | Deep Dive |
| CVE-2025-10896 | Multiple Plugins <= Multiple Versions - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Upload | litonice13 | Image Comparison Addon for Elementor | High | 8.8 | 2025-11-04 04:27:13 | Deep Dive |
| CVE-2025-57939 | WordPress Image Hover Effects – Elementor Addon Plugin <= 1.4.4 - Broken Access Control Vulnerability | Blocksera | Image Hover Effects – Elementor Addon | Medium | 5.3 | 2025-09-22 18:25:00 | Deep Dive |
| CVE-2025-31025 | WordPress Image Hover Effects Block plugin <= 1.4.5 - Cross Site Scripting (XSS) Vulnerability | Blocksera | Image Hover Effects Block | Medium | 6.5 | 2025-06-06 12:53:59 | Deep Dive |
| CVE-2025-46484 | WordPress Image Hover Effects For WPBakery Page Builder plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability | nasir179125 | Image Hover Effects For WPBakery Page Builder | Medium | 6.5 | 2025-04-24 16:08:50 | Deep Dive |
| CVE-2025-22585 | WordPress Ultimate Image Hover Effects plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability | themebon | Ultimate Image Hover Effects | Medium | 6.5 | 2025-01-07 14:57:04 | Deep Dive |
| CVE-2025-22323 | WordPress Image Hover Effects for Elementor plugin <= 1.0.2.4 - Cross Site Scripting (XSS) vulnerability | Liton Arefin | Image Hover Effects for Elementor | Medium | 6.5 | 2025-01-07 10:48:51 | Deep Dive |
| CVE-2024-4780 | Image Hover Effects – Elementor Addon <= 1.4.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via eihe_link Parameter | blocksera | Image Hover Effects – Elementor Addon | Medium | 6.4 | 2024-07-16 06:43:33 | Deep Dive |
| CVE-2024-37546 | WordPress Image Hover Effects for Elementor with Lightbox and Flipbox plugin <= 3.0.2 - Cross Site Scripting (XSS) vulnerability | biplob018 | Image Hover Effects - Caption Hover with Carousel | Medium | 6.5 | 2024-07-06 14:29:20 | Deep Dive |
| CVE-2024-5001 | Image Hover Effects for Elementor with Lightbox and Flipbox <= 3.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via _id, oxi_addons_f_title_tag, and content_description_tag Parameters | biplob018 | Image Hover Effects for Elementor with Lightbox and Flipbox | Medium | 6.4 | 2024-06-06 02:02:58 | Deep Dive |
| CVE-2024-1166 | Image Hover Effects - Elementor Addon <= 1.4.1 - Authenticated(Contributor+) DOM-based Stored Cross-Site Scripting via Image Hover Effects Widget | blocksera | Image Hover Effects – Elementor Addon | Medium | 6.4 | 2024-05-09 20:03:25 | Deep Dive |
| CVE-2024-29936 | WordPress Image Hover Effects – Elementor Addon plugin <= 1.4 - Cross Site Scripting (XSS) vulnerability | Blocksera | Image Hover Effects – Elementor Addon | Medium | 6.5 | 2024-03-27 10:19:48 | Deep Dive |
| CVE-2023-47552 | WordPress Image Hover Effects Plugin <= 5.5 is vulnerable to Cross Site Request Forgery (CSRF) | Labib Ahmed | Image Hover Effects – WordPress Plugin | Medium | 5.4 | 2023-11-18 21:45:38 | Deep Dive |
| CVE-2023-23681 | WordPress Image Hover Effects For WPBakery Page Builder Plugin <= 4.0 is vulnerable to Cross Site Scripting (XSS) | Labib Ahmed | Image Hover Effects For WPBakery Page Builder | Medium | 6.5 | 2023-03-30 11:06:21 | Deep Dive |
| CVE-2022-45831 | WordPress Image Hover Effects - Caption Hover with Carousel Plugin <= 2.8 is vulnerable to Cross Site Scripting (XSS) | biplob018 | Image Hover Effects for Elementor with Lightbox and Flipbox | High | 7.1 | 2023-03-28 07:15:46 | Deep Dive |
| CVE-2022-4207 | WordPress plugin Image Hover Effects Ultimate 跨站脚本漏洞 | biplob018 | Image Hover Effects Ultimate (Image Gallery, Effects, Lightbox, Comparison or Magnifier) | Medium | 5.5 | 2022-12-13 20:18:37 | Deep Dive |
| CVE-2022-4010 | Image Hover Effects < 5.5 - Admin+ Stored XSS | Unknown | Image Hover Effects | 中危 | - | 2022-12-12 17:54:51 | Deep Dive |
| CVE-2022-3601 | Image Hover Effects Css3 <= 4.5 - Admin+ Stored XSS | Unknown | Image Hover Effects Css3 | 中危 | - | 2022-11-28 13:47:06 | Deep Dive |
| CVE-2022-42459 | WordPress Image Hover Effects Ultimate plugin <= 9.7.1 - Auth. WordPress Options Change vulnerability | Biplob Adhikari | Image Hover Effects Ultimate (WordPress plugin) | High | 7.2 | 2022-11-18 22:17:20 | Deep Dive |
| CVE-2022-2937 | Image Hover Effects Ultimate <= 9.7.3 - Authenticated Stored Cross-Site Scripting via Title & Description | biplob018 | Image Hover Effects Ultimate | Medium | 6.4 | 2022-09-23 13:54:15 | Deep Dive |