Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

漏洞数据库 - AI 增强中文 CVE 平台 与情报

浏览 37+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。

Clear Filters
Found 37 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-5092 Multiple Plugins and Themes <= (Various Versions) - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via lightGallery JavaScript Library lightgalleryteamLightGallery WP Medium 6.4 2025-11-20 06:38:42 Deep Dive
CVE-2025-12639 wModes – Catalog Mode, Product Pricing, Enquiry Forms & Promotions | for WooCommerce <= 1.2.2 - Missing Authorization to Sensitive Information Disclosure sundayfanzwModes – Catalog Mode, Product Pricing, Enquiry Forms & Promotions | for WooCommerce Medium 4.3 2025-11-18 09:27:39 Deep Dive
CVE-2025-62061 WordPress Product Catalog Simple plugin <= 1.8.4 - Cross Site Request Forgery (CSRF) vulnerability impleCodeProduct Catalog Simple Medium 4.3 2025-10-22 14:32:53 Deep Dive
CVE-2025-58992 WordPress Product Catalog Simple Plugin <= 1.8.2 - Cross Site Scripting (XSS) Vulnerability impleCodeProduct Catalog Simple Medium 6.5 2025-09-22 18:26:08 Deep Dive
CVE-2025-49331 WordPress eCommerce Product Catalog plugin <= 3.4.3 - PHP Object Injection Vulnerability impleCodeeCommerce Product Catalog High 7.2 2025-06-17 15:01:23 Deep Dive
CVE-2025-49305 WordPress Product Catalog Simple plugin <= 1.8.1 - Cross Site Scripting (XSS) Vulnerability impleCodeProduct Catalog Simple Medium 6.5 2025-06-06 12:53:48 Deep Dive
CVE-2025-30524 WordPress Product Catalog plugin <= 1.0.4 - SQL Injection vulnerability origincodeProduct Catalog Critical 9.3 2025-03-26 14:24:26 Deep Dive
CVE-2025-1405 Product Catalog Simple <= 1.7.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via show_products Shortcode implecodeProduct Catalog Simple Medium 6.4 2025-02-28 07:03:47 Deep Dive
CVE-2024-12771 eCommerce Product Catalog Plugin for WordPress <= 3.3.43 - Cross-Site Request Forgery to Password Reset implecodeeCommerce Product Catalog Plugin for WordPress High 8.8 2024-12-21 07:02:59 Deep Dive
CVE-2023-50899 WordPress Product Catalog Enquiry for WooCommerce by MultiVendorX plugin <= 5.0.2 - Broken Access Control vulnerability MultiVendorXProduct Catalog Enquiry for WooCommerce by MultiVendorX Medium 5.4 2024-12-09 11:29:54 Deep Dive
CVE-2024-8922 Product Enquiry for WooCommerce <= 2.2.33.33 - Authenticated (Author+) PHP Object Injection in enquiry_detail.php rajeshsingh520PiWeb Product Enquiry or product catalog for WooCommerce High 8.8 2024-09-27 05:31:03 Deep Dive
CVE-2024-25929 WordPress Product Catalog Mode For Woocommerce plugin <= 5.0.5 - Broken Access Control vulnerability MultiVendorXProduct Catalog Enquiry for WooCommerce by MultiVendorX Medium 6.5 2024-06-09 10:30:17 Deep Dive
CVE-2024-32558 WordPress eCommerce Product Catalog plugin <= 3.3.32 - Cross Site Scripting (XSS) vulnerability impleCodeeCommerce Product Catalog High 7.1 2024-04-18 10:08:48 Deep Dive
CVE-2024-32437 WordPress eCommerce Product Catalog plugin <= 3.3.28 - Cross Site Request Forgery (CSRF) vulnerability impleCodeeCommerce Product Catalog Medium 4.3 2024-04-15 08:07:26 Deep Dive
CVE-2023-51688 WordPress eCommerce Product Catalog Plugin <= 3.3.26 is vulnerable to Sensitive Data Exposure impleCodeeCommerce Product Catalog Plugin for WordPress Medium 5.3 2023-12-29 14:53:55 Deep Dive
CVE-2023-51687 WordPress Product Catalog Simple Plugin <= 1.7.6 is vulnerable to Sensitive Data Exposure impleCodeProduct Catalog Simple Medium 5.3 2023-12-29 14:51:16 Deep Dive
CVE-2023-5348 Product Catalog Enquiry for WooCommerce < 5.0.3 - Unauthenticated Stored XSS via Arbitrary Setting Update UnknownProduct Catalog Mode For WooCommerce--2023-12-18 20:08:00 Deep Dive
CVE-2023-49824 WordPress Product Catalog Feed by PixelYourSite Plugin <= 2.1.1 is vulnerable to Cross Site Request Forgery (CSRF) PixelYourSiteProduct Catalog Feed by PixelYourSite Medium 5.4 2023-12-17 10:35:20 Deep Dive
CVE-2023-5979 eCommerce Product Catalog Plugin for WordPress < 3.3.26 - Products Deletion via CSRF UnknowneCommerce Product Catalog Plugin for WordPress--2023-12-04 21:27:38 Deep Dive
CVE-2023-47839 WordPress eCommerce Product Catalog Plugin <= 3.3.26 is vulnerable to Cross Site Scripting (XSS) impleCodeeCommerce Product Catalog Plugin for WordPress Medium 6.5 2023-11-22 23:22:56 Deep Dive