浏览 23+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-24355 | WordPress Houzez Theme - Functionality plugin <= 4.2.6 - Cross Site Scripting (XSS) vulnerability | favethemes | Houzez Theme - Functionality | Medium | 6.5 | 2026-01-22 16:52:43 | Deep Dive |
| CVE-2025-9163 | Houzez <= 4.1.6 - Unauthenticated Stored Cross-Site Scripting via SVG File Upload | favethemes | Houzez | Medium | 6.1 | 2025-11-26 12:30:05 | Deep Dive |
| CVE-2025-9191 | Houzez <= 4.1.6 - Authenticated (Subscriber+) PHP Object Injection via Saved Search | favethemes | Houzez | Medium | 6.3 | 2025-11-26 12:30:04 | Deep Dive |
| CVE-2025-62057 | WordPress Houzez Theme - Functionality plugin < 4.2.0 - Cross Site Scripting (XSS) vulnerability | favethemes | Houzez Theme - Functionality | 中危 | - | 2025-11-06 15:55:50 | Deep Dive |
| CVE-2025-62053 | WordPress Houzez theme < 4.2.0 - Local File Inclusion vulnerability | favethemes | Houzez | High | 8.1 | 2025-11-06 15:55:49 | Deep Dive |
| CVE-2025-62058 | WordPress Houzez Theme - Functionality plugin < 4.2.0 - Cross Site Scripting (XSS) vulnerability | favethemes | Houzez Theme - Functionality | - | - | 2025-10-22 14:32:52 | Deep Dive |
| CVE-2025-62054 | WordPress Houzez Theme - Functionality plugin <= 4.1.8 - Local File Inclusion vulnerability | favethemes | Houzez Theme - Functionality | - | - | 2025-10-22 14:32:52 | Deep Dive |
| CVE-2025-49952 | WordPress Houzez theme <= 4.2.5 - Insecure Direct Object References (IDOR) vulnerability | favethemes | Houzez | Medium | 6.5 | 2025-10-22 14:32:19 | Deep Dive |
| CVE-2025-53198 | WordPress Houzez theme <= 4.0.4 - Local File Inclusion Vulnerability | favethemes | Houzez | High | 8.1 | 2025-08-20 08:03:21 | Deep Dive |
| CVE-2025-53997 | WordPress Houzez theme <= 4.0.4 - Broken Access Control Vulnerability | favethemes | Houzez | Medium | 4.3 | 2025-07-16 10:36:40 | Deep Dive |
| CVE-2025-30793 | WordPress Houzez Property Feed plugin <= 2.5.4 - Arbitrary File Download Vulnerability | Property Hive | Houzez Property Feed | High | 7.5 | 2025-04-01 05:31:36 | Deep Dive |
| CVE-2025-0808 | Houzez Property Feed <= 2.4.21 - Cross-Site Request Forgery to Property Feed Export Deletion | propertyhive | Houzez Property Feed | Medium | 4.3 | 2025-02-12 03:21:39 | Deep Dive |
| CVE-2025-24747 | WordPress Houzez theme <= 3.4.0 - Broken Access Control vulnerability | favethemes | Houzez | Medium | 5.3 | 2025-01-27 14:22:19 | Deep Dive |
| CVE-2025-24754 | WordPress Houzez theme <= 3.4.0 - Broken Access Control vulnerability | favethemes | Houzez | Medium | 4.3 | 2025-01-27 13:59:50 | Deep Dive |
| CVE-2024-22303 | WordPress Houzez theme <= 3.2.4 - Privilege Escalation vulnerability | favethemes | Houzez | High | 8.8 | 2024-09-17 13:38:03 | Deep Dive |
| CVE-2024-21743 | WordPress Houzez Login Register plugin <= 3.2.5 - Privilege Escalation vulnerability | favethemes | Houzez Login Register | High | 8.8 | 2024-09-17 13:35:45 | Deep Dive |
| CVE-2024-43244 | WordPress houzez Theme By FaveThemes <= 3.2.4 - Cross Site Scripting (XSS) vulnerability | favethemes | Houzez | High | 7.1 | 2024-08-18 21:25:53 | Deep Dive |
| CVE-2024-5792 | Houzez CRM <= 1.4.2 - Authenticated (Seller+) SQL Injection | Houzez | Houzez CRM | High | 8.8 | 2024-07-10 02:02:48 | Deep Dive |
| CVE-2024-5793 | Houzez Theme - Functionality <= 3.2.2 - Authenticated (Seller+) SQL Injection | Favethemes | Houzez Theme - Functionality | High | 8.8 | 2024-07-09 02:03:13 | Deep Dive |
| CVE-2023-26540 | WordPress Houzez theme <= 2.7.1 - Privilege Escalation | Favethemes | Houzez | Critical | 9.8 | 2024-05-17 06:41:55 | Deep Dive |