浏览 22+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-1051 | Newsletter – Send awesome emails from WordPress <= 9.1.0 - Cross-Site Request Forgery to Newsletter Unsubscription | satollo | Newsletter – Send awesome emails from WordPress | Medium | 4.3 | 2026-01-20 01:22:46 | Deep Dive |
| CVE-2025-46469 | WordPress Send From plugin <= 2.2 - Cross Site Scripting (XSS) Vulnerability | Benjamin Buddle | Send From | Medium | 5.9 | 2025-04-24 16:09:20 | Deep Dive |
| CVE-2025-31592 | WordPress Send E-mail plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability | Paolo Melchiorre | Send E-mail | Medium | 6.5 | 2025-03-31 12:55:29 | Deep Dive |
| CVE-2025-23600 | WordPress Send to a Friend Addon plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability | pinal.shah | Send to a Friend Addon | High | 7.1 | 2025-03-03 13:30:14 | Deep Dive |
| CVE-2025-23691 | WordPress Send to Twitter plugin <= 1.7.2 - CSRF to Stored XSS vulnerability | Braulio Aquino | Send to Twitter | High | 7.1 | 2025-01-16 20:06:37 | Deep Dive |
| CVE-2024-11374 | TWChat – Send or receive messages from users <= 4.0.4 - Reflected Cross-Site Scripting | rezaplus | TWChat – Send or receive messages from users | Medium | 6.1 | 2024-12-07 09:27:04 | Deep Dive |
| CVE-2024-43208 | WordPress Send Emails with Mandrill plugin <= 1.4.1 - Broken Access Control vulnerability | Matt Miller | Send Emails with Mandrill | Medium | 4.3 | 2024-11-01 14:17:42 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-43799 | send vulnerable to template injection that can lead to XSS | pillarjs | send | Medium | 5.0 | 2024-09-10 14:45:07 | Deep Dive |
| CVE-2024-38760 | WordPress Send Users Email plugin <= 1.5.1 - Sensitive Data Exposure vulnerability | David Maucher | Send Users Email | Medium | 5.3 | 2024-08-13 10:32:09 | Deep Dive |
| CVE-2024-6223 | Send email only on Reply to My Comment <= 1.0.6 - Reflected XSS | Unknown | Send email only on Reply to My Comment | - | - | 2024-07-30 06:00:10 | Deep Dive |
| CVE-2024-6224 | Send email only on Reply to My Comment <= 1.0.6 - Stored XSS via CSRF | Unknown | Send email only on Reply to My Comment | - | - | 2024-07-30 06:00:10 | Deep Dive |
| CVE-2024-5317 | Newsletter <= 8.3.4 - Unauthenticated Stored Cross-Site Scripting via np1 | satollo | Newsletter – Send awesome emails from WordPress | Medium | 6.4 | 2024-06-05 01:56:30 | Deep Dive |
| CVE-2024-3585 | Send PDF for Contact Form 7 <= 1.0.2.3 - Missing Authorization | florent73 | Send PDF for Contact Form 7 | Medium | 5.3 | 2024-05-02 16:51:43 | Deep Dive |
| CVE-2023-52126 | WordPress Send Users Email Plugin <= 1.4.3 is vulnerable to Sensitive Data Exposure | Suman Bhattarai | Send Users Email | Medium | 5.3 | 2024-01-05 11:11:03 | Deep Dive |
| CVE-2023-36007 | Microsoft Send Customer Voice survey from Dynamics 365 Spoofing Vulnerability | Microsoft | Send Customer Voice survey from Dynamics 365 app | High | 7.6 | 2023-11-14 20:17:51 | Deep Dive |
| CVE-2023-4772 | Newsletter <= 7.8.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | satollo | Newsletter – Send awesome emails from WordPress | Medium | 6.4 | 2023-09-07 01:52:16 | Deep Dive |
| CVE-2023-28313 | Microsoft Dynamics 365 Customer Voice Cross-Site Scripting Vulnerability | Microsoft | Send Customer Voice survey from Dynamics 365 | Medium | 6.1 | 2023-04-11 19:13:23 | Deep Dive |
| CVE-2023-0143 | Send PDF for Contact Form 7 < 0.9.9.2 - Contributor+ Stored XSS via Shortcode | Unknown | Send PDF for Contact Form 7 | 中危 | - | 2023-02-06 19:59:17 | Deep Dive |
| CVE-2022-1889 | Newsletter < 7.4.6 - Admin+ Stored Cross-Site Scripting | Unknown | Newsletter – Send awesome emails from WordPress | 中危 | - | 2022-06-20 10:26:13 | Deep Dive |