浏览 24+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-13239 | Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution submit_checkout behavioral workflow | Bdtask | Isshue Multi Store eCommerce Shopping Cart Solution | Medium | 4.3 | 2025-11-16 06:02:06 | Deep Dive |
| CVE-2025-13186 | Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution manage_customer cross site scripting | Bdtask | Isshue Multi Store eCommerce Shopping Cart Solution | Low | 2.4 | 2025-11-14 21:32:06 | Deep Dive |
| CVE-2025-13185 | Bdtask/CodeCanyon News365 profile unrestricted upload | Bdtask | News365 | Medium | 4.7 | 2025-11-14 21:02:06 | Deep Dive |
| CVE-2025-13180 | Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System edit_profile cross site scripting | Bdtask | Wholesale Inventory Control and Inventory Management System | Low | 3.5 | 2025-11-14 19:32:09 | Deep Dive |
| CVE-2025-13179 | Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System cross-site request forgery | Bdtask | Wholesale Inventory Control and Inventory Management System | Medium | 4.3 | 2025-11-14 19:32:07 | Deep Dive |
| CVE-2025-13178 | Bdtask/CodeCanyon SalesERP User Profile edit_profile cross site scripting | Bdtask | SalesERP | Low | 3.5 | 2025-11-14 19:02:10 | Deep Dive |
| CVE-2025-13177 | Bdtask/CodeCanyon SalesERP cross-site request forgery | Bdtask | SalesERP | Medium | 4.3 | 2025-11-14 19:02:07 | Deep Dive |
| CVE-2025-11304 | CodeCanyon/ui-lib Mentor LMS API cross-domain policy | CodeCanyon | Mentor LMS | Medium | 6.3 | 2025-10-05 21:02:06 | Deep Dive |
| CVE-2025-7898 | Codecanyon iDentSoft Account Setting Page updateSetting unrestricted upload | Codecanyon | iDentSoft | Medium | 4.7 | 2025-07-20 15:14:05 | Deep Dive |
| CVE-2025-3855 | CodeCanyon RISE Ultimate Project Manager Profile Picture save_profile_image resource injection | CodeCanyon | RISE Ultimate Project Manager | Medium | 4.3 | 2025-04-22 00:31:09 | Deep Dive |
| CVE-2025-3219 | CodeCanyon Perfex CRM Project Discussions Module 2 cross site scripting | CodeCanyon | Perfex CRM | Low | 3.5 | 2025-04-04 07:31:05 | Deep Dive |
| CVE-2025-2974 | CodeCanyon Perfex CRM Contracts contract cross site scripting | CodeCanyon | Perfex CRM | Low | 3.5 | 2025-03-31 03:31:06 | Deep Dive |
| CVE-2024-11925 | WP JobSearch <= 2.6.7 - Authentication Bypass to Account Takeover and Privilege Escalation | eyecix | JobSearch WP Job Board | Critical | 9.8 | 2024-11-28 07:14:08 | Deep Dive |
| CVE-2024-8615 | WP JobSearch <= 2.6.7 - Unauthenticated Arbitrary File Upload | eyecix | JobSearch WP Job Board | Critical | 10.0 | 2024-11-06 08:29:58 | Deep Dive |
| CVE-2024-8614 | WP JobSearch <= 2.6.7 - Authenticated (Subscriber+) Arbitrary File Upload | eyecix | JobSearch WP Job Board | Critical | 9.9 | 2024-11-06 08:29:57 | Deep Dive |
| CVE-2024-9031 | CodeCanyon CRMGo SaaS show cross site scripting | CodeCanyon | CRMGo SaaS | Low | 3.5 | 2024-09-20 12:00:13 | Deep Dive |
| CVE-2024-9030 | CodeCanyon CRMGo SaaS note cross site scripting | CodeCanyon | CRMGo SaaS | Low | 3.5 | 2024-09-20 12:00:09 | Deep Dive |
| CVE-2024-8945 | CodeCanyon RISE Ultimate Project Manager save sql injection | CodeCanyon | RISE Ultimate Project Manager | Medium | 5.5 | 2024-09-17 18:00:13 | Deep Dive |
| CVE-2024-0545 | CodeCanyon RISE Ultimate Project Manager signin redirect | CodeCanyon | RISE Ultimate Project Manager | Medium | 5.3 | 2024-01-15 06:00:06 | Deep Dive |
| CVE-2023-4407 | Codecanyon Credit Lite POST Request account_statement sql injection | Codecanyon | Credit Lite | Medium | 6.3 | 2023-08-18 13:00:06 | Deep Dive |