浏览 29+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-24355 | WordPress Houzez Theme - Functionality plugin <= 4.2.6 - Cross Site Scripting (XSS) vulnerability | favethemes | Houzez Theme - Functionality | Medium | 6.5 | 2026-01-22 16:52:43 | Deep Dive |
| CVE-2025-67964 | WordPress Homey Core plugin <= 2.4.3 - Cross Site Scripting (XSS) vulnerability | favethemes | Homey Core | - | - | 2026-01-22 16:51:58 | Deep Dive |
| CVE-2025-67965 | WordPress Homey Core plugin <= 2.4.3 - Broken Access Control vulnerability | favethemes | Homey Core | Medium | 5.3 | 2025-12-16 08:12:58 | Deep Dive |
| CVE-2025-9163 | Houzez <= 4.1.6 - Unauthenticated Stored Cross-Site Scripting via SVG File Upload | favethemes | Houzez | Medium | 6.1 | 2025-11-26 12:30:05 | Deep Dive |
| CVE-2025-9191 | Houzez <= 4.1.6 - Authenticated (Subscriber+) PHP Object Injection via Saved Search | favethemes | Houzez | Medium | 6.3 | 2025-11-26 12:30:04 | Deep Dive |
| CVE-2025-62057 | WordPress Houzez Theme - Functionality plugin < 4.2.0 - Cross Site Scripting (XSS) vulnerability | favethemes | Houzez Theme - Functionality | 中危 | - | 2025-11-06 15:55:50 | Deep Dive |
| CVE-2025-62053 | WordPress Houzez theme < 4.2.0 - Local File Inclusion vulnerability | favethemes | Houzez | High | 8.1 | 2025-11-06 15:55:49 | Deep Dive |
| CVE-2025-62058 | WordPress Houzez Theme - Functionality plugin < 4.2.0 - Cross Site Scripting (XSS) vulnerability | favethemes | Houzez Theme - Functionality | - | - | 2025-10-22 14:32:52 | Deep Dive |
| CVE-2025-62054 | WordPress Houzez Theme - Functionality plugin <= 4.1.8 - Local File Inclusion vulnerability | favethemes | Houzez Theme - Functionality | - | - | 2025-10-22 14:32:52 | Deep Dive |
| CVE-2025-49952 | WordPress Houzez theme <= 4.2.5 - Insecure Direct Object References (IDOR) vulnerability | favethemes | Houzez | Medium | 6.5 | 2025-10-22 14:32:19 | Deep Dive |
| CVE-2025-49407 | WordPress Premium SEO Pack Plugin <= 3.3.2 - Privilege Escalation Vulnerability | favethemes | Premium SEO Pack | High | 8.8 | 2025-08-28 12:37:16 | Deep Dive |
| CVE-2025-49405 | WordPress Pro Bulk Watermark Plugin for WordPress Theme <= 2.0 - Path Traversal Vulnerability | Favethemes | Pro Bulk Watermark Plugin for WordPress | Medium | 4.3 | 2025-08-28 12:37:16 | Deep Dive |
| CVE-2025-49406 | WordPress Premium Age Verification / Restriction for WordPress Plugin <= 3.0.2 - SQL Injection Vulnerability | favethemes | Premium Age Verification / Restriction for WordPress | High | 8.5 | 2025-08-20 08:03:49 | Deep Dive |
| CVE-2025-53198 | WordPress Houzez theme <= 4.0.4 - Local File Inclusion Vulnerability | favethemes | Houzez | High | 8.1 | 2025-08-20 08:03:21 | Deep Dive |
| CVE-2025-53997 | WordPress Houzez theme <= 4.0.4 - Broken Access Control Vulnerability | favethemes | Houzez | Medium | 4.3 | 2025-07-16 10:36:40 | Deep Dive |
| CVE-2025-31037 | WordPress Homey theme <= 2.4.5 - Reflected Cross Site Scripting (XSS) vulnerability | favethemes | Homey | High | 7.1 | 2025-07-04 11:18:07 | Deep Dive |
| CVE-2025-52834 | WordPress Homey theme <= 2.4.7 - SQL Injection vulnerability | favethemes | Homey | Critical | 9.3 | 2025-06-27 11:52:13 | Deep Dive |
| CVE-2024-51800 | WordPress Homey theme <= 2.4.1 - Privilege Escalation vulnerability | Favethemes | Homey | Critical | 9.8 | 2025-04-04 13:47:14 | Deep Dive |
| CVE-2025-24747 | WordPress Houzez theme <= 3.4.0 - Broken Access Control vulnerability | favethemes | Houzez | Medium | 5.3 | 2025-01-27 14:22:19 | Deep Dive |
| CVE-2025-24754 | WordPress Houzez theme <= 3.4.0 - Broken Access Control vulnerability | favethemes | Houzez | Medium | 4.3 | 2025-01-27 13:59:50 | Deep Dive |