Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 130 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-39658 WordPress Panda Pods Repeater Field plugin <= 1.5.12 - Broken Access Control vulnerability Coding PandaPanda Pods Repeater Field--2026-04-08 08:30:37 Deep Dive
CVE-2026-1556 Information disclosure via file URI overwrite in File (Field) Paths DrupalDrupal File (Field) Paths 中危 -2026-03-26 21:14:21 Deep Dive
CVE-2026-1278 Mandatory Field <= 1.6.8 - Authenticated (Administrator+) Stored Cross-Site Scripting via Settings Fields ketanmujumdarMandatory Field Medium 4.4 2026-03-21 03:27:11 Deep Dive
CVE-2026-3231 Checkout Field Editor (Checkout Manager) for WooCommerce <= 2.1.7 - Unauthenticated Stored Cross-Site Scripting via Block Checkout Custom Radio Field themehighCheckout Field Editor (Checkout Manager) for WooCommerce High 7.2 2026-03-11 09:25:45 Deep Dive
CVE-2025-69389 WordPress Visitor Maps Extended Referer Field plugin <= 1.2.6 - Reflected Cross Site Scripting (XSS) vulnerability Hugh MungusVisitor Maps Extended Referer Field--2026-02-20 15:46:55 Deep Dive
CVE-2025-14983 Advanced Custom Fields: Font Awesome <= 5.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting mattkeysAdvanced Custom Fields: Font Awesome Field Medium 6.4 2026-02-19 04:36:23 Deep Dive
CVE-2025-13930 Checkout Field Manager (Checkout Manager) for WooCommerce <= 7.8.5 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion quadlayersCheckout Field Manager (Checkout Manager) for WooCommerce Medium 5.3 2026-02-19 04:36:09 Deep Dive
CVE-2025-12081 ACF Photo Gallery Field <= 3.0 - Missing Authorization to Authenticated (Subscriber+) Attachment Metadata Modification navzmeACF Photo Gallery Field Medium 4.3 2026-02-19 03:25:20 Deep Dive
CVE-2025-12500 Checkout Field Manager (Checkout Manager) for WooCommerce <= 7.8.1 - Unauthenticated Limited File Upload quadlayersCheckout Field Manager (Checkout Manager) for WooCommerce Medium 5.3 2026-02-19 03:25:20 Deep Dive
CVE-2025-12067 Table Field Add-on for ACF and SCF <= 1.3.30 - Authenticated (Contributor+) Stored Cross-Site Scripting via Table Cell Content jonuaTable Field Add-on for ACF and SCF Medium 6.4 2026-01-06 07:22:12 Deep Dive
CVE-2025-14997 BuddyPress Xprofile Custom Field Types <= 1.2.8 - Authenticated (Subscriber+) Arbitrary File Deletion buddydevBuddyPress Xprofile Custom Field Types High 8.8 2026-01-06 04:31:57 Deep Dive
CVE-2025-14996 AS Password Field In Default Registration Form <= 2.0.0 - Unauthenticated Privilege Escalation via Account Takeover aksharsoftsolutionsAS Password Field In Default Registration Form Critical 9.8 2026-01-06 04:31:55 Deep Dive
CVE-2025-68607 WordPress Custom Field Template plugin <= 2.7.7 - Cross Site Scripting (XSS) vulnerability Hiroaki MiyashitaCustom Field Template Medium 6.5 2025-12-29 21:10:51 Deep Dive
CVE-2025-63058 WordPress Custom Field Template plugin <= 2.7.6 - Sensitive Data Exposure vulnerability Hiroaki MiyashitaCustom Field Template Medium 4.3 2025-12-09 14:52:33 Deep Dive
CVE-2025-62211 Dynamics 365 Field Service (online) Spoofing Vulnerability MicrosoftDynamics 365 Field Service (online) High 8.7 2025-11-11 17:59:47 Deep Dive
CVE-2025-62210 Dynamics 365 Field Service (online) Spoofing Vulnerability MicrosoftDynamics 365 Field Service (online) High 8.7 2025-11-11 17:59:29 Deep Dive
CVE-2025-10926 JSON Field - Critical - Cross Site Scripting - SA-CONTRIB-2025-106 DrupalJSON Field--2025-10-29 23:12:57 Deep Dive
CVE-2025-58989 WordPress Dynamic Text Field For Contact Form 7 Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability silverplugins217Dynamic Text Field For Contact Form 7 Medium 6.5 2025-09-09 16:33:10 Deep Dive
CVE-2025-48158 WordPress BuddyPress XProfile Custom Image Field Plugin <= 3.0.1 - Arbitrary File Deletion Vulnerability Alex GithatuBuddyPress XProfile Custom Image Field High 8.6 2025-08-20 08:03:31 Deep Dive
CVE-2025-30744 Oracle E-Business Suite 安全漏洞 Oracle CorporationOracle Mobile Field Service High 8.1 2025-07-15 19:27:24 Deep Dive