浏览 28+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-15611 | Popup Box AYS Pro < 5.5.0 - Admin+ Stored Cross-Site Scripting (XSS) via CSRF | Unknown | Popup Box | - | - | 2026-04-07 06:00:10 | Deep Dive |
| CVE-2026-32428 | WordPress Popup Like box plugin <= 3.7.7 - Broken Access Control vulnerability | Ays Pro | Popup Like box | 中危 | - | 2026-03-13 11:42:18 | Deep Dive |
| CVE-2025-68526 | WordPress Modal Popup Box plugin <= 1.6.1 - PHP Object Injection vulnerability | A WP Life | Modal Popup Box | - | - | 2026-02-20 15:46:39 | Deep Dive |
| CVE-2025-12122 | Popup Box – Easily Create WordPress Popups <= 3.2.12 - Authenticated (Contributor+) Stored Cross-Site Scripting | wpcalc | Popup Box – Easily Create WordPress Popups | Medium | 6.4 | 2026-02-18 05:29:18 | Deep Dive |
| CVE-2026-1165 | Popup Box <= 6.1.1 - Cross-Site Request Forgery to Popup Status Change | ays-pro | Popup Box – Create Countdown, Coupon, Video, Contact Form Popups | Medium | 4.3 | 2026-01-31 14:22:29 | Deep Dive |
| CVE-2025-69021 | WordPress Popup box plugin <= 6.0.7 - Cross Site Request Forgery (CSRF) vulnerability | Ays Pro | Popup box | Medium | 5.4 | 2025-12-30 10:47:55 | Deep Dive |
| CVE-2025-57931 | WordPress Popup box plugin <= 5.5.4 - Cross Site Request Forgery (CSRF) vulnerability | Ays Pro | Popup box | Medium | 5.3 | 2025-10-29 04:02:10 | Deep Dive |
| CVE-2024-9599 | Popup Box < 4.7.8 - Admin+ Stored XSS | Unknown | Popup Box | - | - | 2025-05-15 20:07:22 | Deep Dive |
| CVE-2025-24711 | WordPress Popup Box Plugin <= 3.2.4 - Cross Site Request Forgery (CSRF) vulnerability | Wow-Company | Popup Box | Medium | 5.4 | 2025-01-24 17:25:00 | Deep Dive |
| CVE-2024-10861 | Popup Box – Create Countdown, Coupon, Video, Contact Form Popups <= 4.9.7 - Missing Authorization to Unauthenticated Limited Options Update | ays-pro | Popup Box – Create Countdown, Coupon, Video, Contact Form Popups | Medium | 5.3 | 2024-11-16 02:02:32 | Deep Dive |
| CVE-2024-37096 | WordPress Popup box plugin <= 4.5.1 - Broken Access Control vulnerability | Popup Box Team | Popup box | Medium | 4.3 | 2024-11-01 14:18:38 | Deep Dive |
| CVE-2024-5224 | Easy Social Like Box – Popup – Sidebar Widget <= 4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | johnnash1975 | Easy Social Like Box – Popup – Sidebar Widget | Medium | 6.4 | 2024-06-06 02:03:00 | Deep Dive |
| CVE-2024-34367 | WordPress Popup Box plugin <= 4.1.2 - CSRF to XSS vulnerability | Popup Box Team | Popup box | High | 7.1 | 2024-05-06 18:16:16 | Deep Dive |
| CVE-2024-3897 | Popup Box – Best WordPress Popup Plugin <= 4.3.6 - Missing Authorization to Information Exposure | ays-pro | Popup Box – Create Countdown, Coupon, Video, Contact Form Popups | Medium | 5.3 | 2024-05-02 16:52:48 | Deep Dive |
| CVE-2024-3477 | Popup Box < 2.2.7 - Popup Deletion via CSRF | Unknown | Popup Box | 中危 | - | 2024-05-02 06:00:03 | Deep Dive |
| CVE-2024-31387 | WordPress Popup Likebox plugin <= 3.7.2 - Cross-Site Scripting (XSS) vulnerability | Popup LikeBox Team | Popup Like box | Medium | 5.9 | 2024-04-11 12:47:14 | Deep Dive |
| CVE-2024-2008 | Modal Popup Box – Popup Builder, Show Offers And News in Popup <= 1.5.2 - Authenticated (Contributor+) PHP Object Injection in awl_modal_popup_box_shortcode | awordpresslife | Modal Popup Box | High | 8.8 | 2024-04-04 02:32:40 | Deep Dive |
| CVE-2023-6591 | Popup Box Pro < 20.9.0 - Admin+ Stored XSS | Unknown | Popup Box | 中危 | - | 2024-02-12 16:06:00 | Deep Dive |
| CVE-2023-5809 | Popup box < 3.8.6 - Admin+ Stored XSS in Categories | Unknown | Popup box | - | - | 2023-12-04 21:29:59 | Deep Dive |
| CVE-2023-5874 | Popup box < 3.8.6 - Admin+ Stored XSS in Popup Settings | Unknown | Popup box | - | - | 2023-12-04 21:28:14 | Deep Dive |