Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

漏洞数据库 - AI 增强中文 CVE 平台 与情报

浏览 31+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。

Clear Filters
Found 31 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-32537 WordPress Visual Portfolio, Photo Gallery & Post Grid plugin <= 3.5.1 - Local File Inclusion vulnerability nKVisual Portfolio, Photo Gallery & Post Grid 中危 -2026-03-25 16:15:11 Deep Dive
CVE-2025-62098 WordPress Portfolio Gallery plugin <= 1.4.8 - Broken Access Control vulnerability totalsoftPortfolio Gallery Medium 5.4 2025-12-31 14:47:46 Deep Dive
CVE-2025-13896 Social Feed Gallery Portfolio <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'id' Shortcode Attribute wpdiscoverSocial Feed Gallery Portfolio Medium 6.4 2025-12-06 05:49:23 Deep Dive
CVE-2025-5092 Multiple Plugins and Themes <= (Various Versions) - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via lightGallery JavaScript Library lightgalleryteamLightGallery WP Medium 6.4 2025-11-20 06:38:42 Deep Dive
CVE-2025-7644 Pixel Gallery Addons for Elementor – Easy Grid, Creative Gallery, Drag and Drop Grid, Custom Grid Layout, Portfolio Gallery <= 1.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting bdthemesPixel Gallery Addons for Elementor – Easy Grid, Creative Gallery, Drag and Drop Grid, Custom Grid Layout, Portfolio Gallery Medium 6.4 2025-07-22 04:25:08 Deep Dive
CVE-2025-7046 Portfolio for Elementor & Image Gallery | PowerFolio <= 3.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS dotrexPowerFolio – Portfolio & Image Gallery for Elementor Medium 6.4 2025-07-04 01:44:01 Deep Dive
CVE-2025-1757 WordPress Portfolio Builder – Portfolio Gallery <= 1.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode portfoliohubWordPress Portfolio Builder – Portfolio Gallery Medium 6.4 2025-02-28 04:21:56 Deep Dive
CVE-2024-13231 WordPress Portfolio Builder – Portfolio Gallery <= 1.1.7 - Missing Authorization to Unauthenticated Portfolio Update portfoliohubWordPress Portfolio Builder – Portfolio Gallery Medium 5.3 2025-02-19 08:21:46 Deep Dive
CVE-2024-11900 Portfolio – Filterable Masonry Portfolio Gallery for Professionals <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting logichuntPortfolio – Filterable Masonry Portfolio Gallery for Professionals Medium 6.4 2024-12-16 23:24:17 Deep Dive
CVE-2023-32585 WordPress Portfolio Gallery – Responsive Image Gallery plugin <= 1.4.6 - Broken Access Control vulnerability totalsoftPortfolio Gallery High 7.5 2024-12-13 14:23:25 Deep Dive
CVE-2024-5020 Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library extendthemesColibri Page Builder Medium 6.4 2024-12-04 08:22:47 Deep Dive
CVE-2024-53788 WordPress WordPress Portfolio Builder – Portfolio Gallery plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability portfoliohubWordPress Portfolio Builder – Portfolio Gallery Medium 5.9 2024-11-30 21:05:24 Deep Dive
CVE-2024-49302 WordPress WordPress Portfolio Builder – Portfolio Gallery plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability portfoliohubWordPress Portfolio Builder – Portfolio Gallery Medium 6.5 2024-10-17 18:50:42 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-9025 Sight – Professional Image Gallery and Portfolio <= 1.1.2 - Missing Authorization to Sensitive Information Exposure in handler_post_title codesupplycoSight – Professional Image Gallery and Portfolio Medium 5.3 2024-09-26 08:29:46 Deep Dive
CVE-2024-6262 Portfolio Gallery – Image Gallery Plugin <= 1.6.4 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting awordpresslifePortfolio Filter Gallery Medium 6.4 2024-06-27 11:03:35 Deep Dive
CVE-2024-5021 WordPress Picture / Portfolio / Media Gallery <= 3.0.1 - Unauthenticated Server-Side Request Forgery nimble3WordPress Picture / Portfolio / Media Gallery Critical 9.3 2024-06-19 03:12:29 Deep Dive
CVE-2024-4363 Visual Portfolio, Photo Gallery & Post Grid <= 3.3.2 - Authenticated (Author+) Stored Cross-Site Scripting via title_tag Parameter nkoVisual Portfolio, Photo Gallery & Post Grid Medium 6.4 2024-05-14 23:31:45 Deep Dive
CVE-2024-1896 Photo Gallery <= 1.4.2 - Authenticated(Contributor+) PHP Object Injection via Shortcode awordpresslifePhoto Gallery for Images High 7.5 2024-05-02 16:51:47 Deep Dive
CVE-2024-29769 WordPress Portfolio Gallery plugin <= 1.5.6 - Cross Site Scripting (XSS) vulnerability -Portfolio Gallery – Image Gallery Plugin Medium 6.5 2024-03-27 13:01:56 Deep Dive