漏洞数据库 - AI 增强中文 CVE 平台与情报

浏览 36+ 条来自 NVD 与 CNNVD 的 CVE 漏洞，配 AI 中文翻译、AI POC 生成、每日情报；可按厂商、产品、严重等级、CWE 检索。

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2026-1070	Alex User Counter <= 6.0 - Cross-Site Request Forgery to Settings Update	adzbierajewski	Alex User Counter	Medium	4.3	2026-01-24 07:26:41	Deep Dive
CVE-2025-62871	WordPress Just TinyMCE Custom Styles plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerability	Alex Prokopenko / JustCoded	Just TinyMCE Custom Styles	-	-	2025-12-09 14:52:25	Deep Dive
CVE-2025-49341	WordPress PDF Creator Lite plugin <= 1.2 - Cross Site Request Forgery (CSRF) vulnerability	Alex Furr	PDF Creator Lite	-	-	2025-12-09 14:52:18	Deep Dive
CVE-2025-12399	Alex Reservations: Smart Restaurant Booking <= 2.2.3 - Authenticated (Admin+) Arbitrary File Upload	alexreservations	Alex Reservations: Smart Restaurant Booking	High	7.2	2025-11-08 09:28:12	Deep Dive
CVE-2025-60186	WordPress Google+ Comments Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability	Alex Moss	Google+ Comments	Medium	5.9	2025-09-26 08:32:14	Deep Dive
CVE-2025-58011	WordPress Content Mask plugin <= 1.8.5.2 - Server Side Request Forgery (SSRF) vulnerability	Alex	Content Mask	Medium	6.4	2025-09-22 18:24:08	Deep Dive
CVE-2025-58012	WordPress Content Mask plugin <= 1.8.5.3 - Insecure Direct Object References (IDOR) vulnerability	Alex	Content Mask	Low	3.8	2025-09-22 18:24:07	Deep Dive
CVE-2025-48158	WordPress BuddyPress XProfile Custom Image Field Plugin <= 3.0.1 - Arbitrary File Deletion Vulnerability	Alex Githatu	BuddyPress XProfile Custom Image Field	High	8.6	2025-08-20 08:03:31	Deep Dive
CVE-2025-48141	WordPress Multi CryptoCurrency Payments plugin <= 2.0.7 - SQL Injection Vulnerability	Alex Zaytseff	Multi CryptoCurrency Payments	Critical	9.3	2025-06-09 15:53:59	Deep Dive
CVE-2025-46483	WordPress Peadig’s Google +1 Button plugin <= 0.1.2 - Cross Site Scripting (XSS) Vulnerability	Alex Moss	Peadig’s Google +1 Button	Medium	6.5	2025-04-24 16:09:11	Deep Dive
CVE-2025-32156	WordPress Just Post Preview Widget plugin <= 1.1.1 - Local File Inclusion vulnerability	Alex Prokopenko / JustCoded	Just Post Preview Widget	High	7.5	2025-04-04 15:58:41	Deep Dive
CVE-2025-30903	WordPress SyntaxHighlighter Evolved plugin <= 3.7.1 - Cross Site Scripting (XSS) vulnerability	Alex Mills	SyntaxHighlighter Evolved	Medium	6.5	2025-03-27 10:55:51	Deep Dive
CVE-2025-23937	WordPress LinkedIn Lite Plugin <= 1.0 - Local File Inclusion vulnerability	Alex Furr	LinkedIn Lite	High	8.1	2025-03-26 14:24:17	Deep Dive
CVE-2025-23763	WordPress WAH Forms plugin <= 1.0 - Sensitive Data Exposure vulnerability	Alex Volkov	WAH Forms	Medium	6.5	2025-03-03 13:30:19	Deep Dive
CVE-2025-27336	WordPress Just Variables Plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability	Alex Prokopenko / JustCoded	Just Variables	Medium	4.3	2025-02-24 14:49:17	Deep Dive
CVE-2025-25117	WordPress Smart Countdown FX plugin <= 1.5.5 - Cross Site Scripting (XSS) vulnerability	Alex Polonski	Smart Countdown FX	Medium	6.5	2025-02-07 10:11:44	Deep Dive
CVE-2024-13380	Alex Reservations: Smart Restaurant Booking <= 2.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode	alexreservations	Alex Reservations: Smart Restaurant Booking	Medium	6.4	2025-01-30 12:22:27	Deep Dive
CVE-2025-23760	WordPress Chatter plugin <= 1.0.1 - CSRF to Stored XSS vulnerability	Alex Volkov	Chatter	High	7.1	2025-01-16 20:08:14	Deep Dive
CVE-2025-23761	WordPress Woo Tuner plugin <= 0.1.2 - Broken Access Control vulnerability	Alex Volkov	Woo Tuner	Medium	5.4	2025-01-16 20:08:14	Deep Dive
CVE-2025-23892	WordPress Progress Tracker plugin <= 0.9.3 - Cross Site Scripting (XSS) vulnerability	Alex Furr	Progress Tracker	Medium	6.5	2025-01-16 20:07:40	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

漏洞数据库 - AI 增强中文 CVE 平台 与情报

漏洞数据库 - AI 增强中文 CVE 平台与情报