Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 218 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-6625 moxi624 Mogu Blog v2 Picture Storage Service LocalFileServiceImpl.java LocalFileServiceImpl.uploadPictureByUrl server-side request forgery moxi624Mogu Blog v2 High 7.3 2026-04-20 09:30:17 Deep Dive
CVE-2026-6443 Essentialplugin Plugins (Various Versions) - Injected Backdoor essentialpluginAccordion and Accordion Slider Critical 9.8 2026-04-17 06:44:49 Deep Dive
CVE-2026-0718 Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX <= 5.0.5 - Missing Authorization to Limited Post Meta Modification wpxpoPost Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX Medium 5.3 2026-04-16 07:39:51 Deep Dive
CVE-2026-6202 code-projects Easy Blog Site post.php sql injection code-projectsEasy Blog Site Medium 6.3 2026-04-13 19:15:20 Deep Dive
CVE-2026-5806 code-projects Easy Blog Site update.php cross site scripting code-projectsEasy Blog Site Low 3.5 2026-04-08 21:15:18 Deep Dive
CVE-2026-5805 code-projects Easy Blog Site contact_us.php sql injection code-projectsEasy Blog Site High 7.3 2026-04-08 20:30:18 Deep Dive
CVE-2026-39648 WordPress Cream Blog theme <= 2.1.7 - Broken Access Control vulnerability themebeezCream Blog--2026-04-08 08:30:34 Deep Dive
CVE-2026-39632 WordPress Grand Blog theme <= 3.1 - Cross Site Request Forgery (CSRF) vulnerability ThemeGoodsGrand Blog--2026-04-08 08:30:29 Deep Dive
CVE-2026-39517 WordPress Blog Filter plugin <= 1.7.6 - Cross Site Scripting (XSS) vulnerability A WP LifeBlog Filter--2026-04-08 08:30:15 Deep Dive
CVE-2026-5646 code-projects Easy Blog Site login.php sql injection code-projectsEasy Blog Site High 7.3 2026-04-06 10:30:12 Deep Dive
CVE-2026-4616 bolo-blog Article Title article cross site scripting -bolo-blog Low 2.4 2026-03-24 00:16:12 Deep Dive
CVE-2026-32357 WordPress Simple Blog Card plugin <= 2.37 - Server Side Request Forgery (SSRF) vulnerability Katsushi KawamoriSimple Blog Card 中危 -2026-03-13 11:42:01 Deep Dive
CVE-2018-25200 OOP CMS BLOG 1.0 Cross-Site Request Forgery via addUser.php ZsoftOOP CMS BLOG Medium 5.3 2026-03-06 12:19:23 Deep Dive
CVE-2018-25199 OOP CMS BLOG 1.0 SQL Injection via search parameter ZsoftOOP CMS BLOG High 8.2 2026-03-06 12:19:22 Deep Dive
CVE-2026-27339 WordPress Buzz Stone | Magazine & Viral Blog WordPress Theme theme <= 1.0.2 - Local File Inclusion vulnerability AncoraThemesBuzz Stone | Magazine & Viral Blog WordPress Theme 中危 -2026-03-05 05:53:52 Deep Dive
CVE-2026-27337 WordPress Chronicle - Lifestyle Magazine & Blog WordPress Theme theme <= 1.0 - Local File Inclusion vulnerability AncoraThemesChronicle - Lifestyle Magazine & Blog WordPress Theme 中危 -2026-03-05 05:53:52 Deep Dive
CVE-2025-66024 XWiki Blog Application home page vulnerable to Stored XSS via Post Title xwiki-contribapplication-blog-ui--2026-03-04 21:47:11 Deep Dive
CVE-2026-1273 PostX <= 5.0.8 - Authenticated (Administrator+) Server-Side Request Forgery via REST API Endpoints wpxpoPost Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX High 7.2 2026-03-04 01:21:59 Deep Dive
CVE-2025-69374 WordPress Eleblog – Elementor Blog And Magazine Addons plugin <= 2.0.3 - Local File Inclusion vulnerability SolverWpEleblog – Elementor Blog And Magazine Addons--2026-02-20 15:46:52 Deep Dive
CVE-2026-2284 News Element Elementor Blog Magazine <= 1.0.8 - Missing Authorization to Authenticated (Subscriber+) Data Loss webangonNews Element Elementor Blog Magazine Medium 5.4 2026-02-19 04:36:26 Deep Dive