浏览 30+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-25369 | WordPress Flexmls® IDX plugin <= 3.15.9 - Reflected Cross Site Scripting (XSS) vulnerability | flexmls | Flexmls® IDX | High | 7.1 | 2026-03-16 14:13:49 | Deep Dive |
| CVE-2025-67585 | WordPress Flexmls® IDX plugin <= 3.15.7 - Open Redirection vulnerability | flexmls | Flexmls® IDX | Medium | 4.7 | 2025-12-09 14:14:16 | Deep Dive |
| CVE-2025-54052 | WordPress Realtyna Organic IDX plugin <= 5.0.0 - Local File Inclusion Vulnerability | Realtyna | Realtyna Organic IDX plugin | High | 7.5 | 2025-08-20 08:02:55 | Deep Dive |
| CVE-2025-50037 | WordPress Buying Buddy IDX CRM plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability | Buying Buddy | Buying Buddy IDX CRM | Medium | 6.5 | 2025-06-20 15:03:52 | Deep Dive |
| CVE-2023-6783 | WolfNet IDX for WordPress <= 1.19.1 - Admin+ Stored XSS | Unknown | WolfNet IDX for WordPress | - | - | 2025-05-15 20:09:19 | Deep Dive |
| CVE-2024-7769 | Wordpress Clicksold IDX Plugin <= 1.90 - Admin+ XSS | Unknown | ClickSold IDX | - | - | 2025-05-15 20:07:12 | Deep Dive |
| CVE-2025-31011 | WordPress SimplyRETS Real Estate IDX plugin <= 3.2.2 - Cross Site Scripting (XSS) vulnerability | ReichertBrothers | SimplyRETS Real Estate IDX | High | 7.1 | 2025-04-15 11:59:08 | Deep Dive |
| CVE-2025-31556 | WordPress IMPress for IDX Broker plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability | IDX Broker | IMPress for IDX Broker | Medium | 6.5 | 2025-03-31 12:55:17 | Deep Dive |
| CVE-2025-31010 | WordPress SimplyRETS Real Estate IDX plugin <= 3.0.5 - CSRF to Multiple Admin Actions vulnerability | ReichertBrothers | SimplyRETS Real Estate IDX | Medium | 4.3 | 2025-03-28 15:12:27 | Deep Dive |
| CVE-2025-28921 | WordPress SpatialMatch IDX plugin <= 3.0.9 - Reflected Cross Site Scripting (XSS) vulnerability | homejunction | SpatialMatch IDX | High | 7.1 | 2025-03-26 14:24:25 | Deep Dive |
| CVE-2025-0863 | Flexmls® IDX <= 3.14.27 - Authenticated (Contributor+) Stored Cross-Site Scripting | flexmls | Flexmls® IDX Plugin | Medium | 6.4 | 2025-03-07 07:22:23 | Deep Dive |
| CVE-2025-26900 | WordPress Flexmls® IDX Plugin Plugin <= 3.14.27 - PHP Object Injection vulnerability | flexmls | Flexmls® IDX | Critical | 9.8 | 2025-02-25 14:17:53 | Deep Dive |
| CVE-2024-10552 | Flexmls® IDX Plugin <= 3.14.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via API parameters | flexmls | Flexmls® IDX Plugin | Medium | 6.4 | 2025-01-25 06:40:38 | Deep Dive |
| CVE-2024-12491 | SimplyRETS Real Estate IDX <= 2.11.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | reichertbrothers | SimplyRETS Real Estate IDX | Medium | 6.4 | 2025-01-09 11:11:03 | Deep Dive |
| CVE-2023-45633 | WordPress IMPress Listings plugin <= 2.6.2 - Broken Access Control vulnerability | IDX | IMPress Listings | Medium | 6.5 | 2025-01-02 14:52:24 | Deep Dive |
| CVE-2024-56013 | WordPress Wovax IDX plugin <= 1.2.2 - Account Takeover vulnerability | wovax | Wovax IDX | High | 8.8 | 2024-12-16 14:31:15 | Deep Dive |
| CVE-2024-12502 | My IDX Home Search <= 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | homeasap | My IDX Home Search | Medium | 6.4 | 2024-12-14 04:23:47 | Deep Dive |
| CVE-2024-11889 | My IDX Home Search <= 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | homeasap | My IDX Home Search | Medium | 6.4 | 2024-12-14 04:23:39 | Deep Dive |
| CVE-2024-11723 | kvCORE IDX <= 2.3.35 - Reflected Cross-Site Scripting | insiderealestate | kvCORE IDX | Medium | 6.1 | 2024-12-12 04:23:08 | Deep Dive |
| CVE-2024-53726 | WordPress RealtyCandy IDX Broker Extended plugin <= 1.5.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability | RealtyCandy.com | RealtyCandy IDX Broker Extended | High | 7.1 | 2024-12-02 13:48:41 | Deep Dive |