漏洞数据库 - AI 增强中文 CVE 平台与情报

浏览 102+ 条来自 NVD 与 CNNVD 的 CVE 漏洞，配 AI 中文翻译、AI POC 生成、每日情报；可按厂商、产品、严重等级、CWE 检索。

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2026-32498	WordPress RegistrationMagic plugin <= 6.0.7.6 - Broken Access Control vulnerability	Metagauss	RegistrationMagic	中危	-	2026-03-25 16:15:00	Deep Dive
CVE-2026-25417	WordPress ProfileGrid plugin <= 5.9.8.1 - Cross Site Scripting (XSS) vulnerability	Metagauss	ProfileGrid	Medium	6.5	2026-03-25 16:14:49	Deep Dive
CVE-2026-24378	WordPress EventPrime plugin <= 4.2.8.0 - PHP Object Injection vulnerability	Metagauss	EventPrime	Critical	9.8	2026-03-25 16:14:33	Deep Dive
CVE-2026-24373	WordPress RegistrationMagic plugin <= 6.0.7.1 - Account Takeover vulnerability	Metagauss	RegistrationMagic	High	8.1	2026-03-25 16:14:32	Deep Dive
CVE-2025-69358	WordPress EventPrime plugin <= 4.2.6.0 - Broken Access Control vulnerability	Metagauss	EventPrime	High	7.5	2026-03-25 16:14:22	Deep Dive
CVE-2026-25312	WordPress EventPrime plugin <= 4.2.8.3 - Payment Bypass vulnerability	Metagauss	EventPrime	高危	-	2026-03-19 07:21:00	Deep Dive
CVE-2026-32385	WordPress RegistrationMagic plugin <= 6.0.7.6 - Broken Access Control vulnerability	Metagauss	RegistrationMagic	中危	-	2026-03-13 11:42:10	Deep Dive
CVE-2026-2494	ProfileGrid <= 5.9.8.2 - Cross-Site Request Forgery to Group Membership Request Approval/Denial	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	4.3	2026-03-07 01:21:22	Deep Dive
CVE-2026-2488	ProfileGrid <= 5.9.8.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Message Deletion	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	4.3	2026-03-07 01:21:22	Deep Dive
CVE-2026-25389	WordPress EventPrime plugin <= 4.2.8.3 - Sensitive Data Exposure vulnerability	Metagauss	EventPrime	-	-	2026-02-19 08:27:02	Deep Dive
CVE-2025-14444	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 6.0.6.9 - Unauthenticated Payment Bypass via rm_process_paypal_sdk_payment	metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	Medium	5.3	2026-02-18 10:20:48	Deep Dive
CVE-2026-1655	EventPrime <= 4.2.8.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Event Modification via 'event_id' Parameter	metagauss	EventPrime – Events Calendar, Bookings and Tickets	Medium	4.3	2026-02-18 07:25:40	Deep Dive
CVE-2026-1657	EventPrime <= 4.2.8.4 - Missing Authorization to Unauthenticated Image Upload via 'ep_upload_file_media' AJAX Endpoint	metagauss	EventPrime – Events Calendar, Bookings and Tickets	Medium	5.3	2026-02-17 05:29:53	Deep Dive
CVE-2026-1271	ProfileGrid <= 5.9.7.2 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Profile and Cover Image Modification	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	5.3	2026-02-05 09:13:45	Deep Dive
CVE-2025-13416	ProfileGrid – User Profiles, Groups and Communities <= 5.9.7.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Suspension	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	4.3	2026-02-05 08:25:44	Deep Dive
CVE-2026-1054	RegistrationMagic <= 6.0.7.4 - Missing Authorization to Unauthenticated Arbitrary Settings Modification	metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	Medium	5.3	2026-01-28 07:27:35	Deep Dive
CVE-2026-24380	WordPress EventPrime plugin <= 4.2.8.0 - Broken Access Control vulnerability	Metagauss	EventPrime	Medium	5.3	2026-01-22 16:52:47	Deep Dive
CVE-2026-24374	WordPress RegistrationMagic plugin <= 6.0.6.9 - Cross Site Request Forgery (CSRF) vulnerability	Metagauss	RegistrationMagic	Medium	5.4	2026-01-22 16:52:46	Deep Dive
CVE-2025-15403	RegistrationMagic <= 6.0.7.1 - Unauthenticated Privilege Escalation via admin_order	metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	Critical	9.8	2026-01-17 02:22:32	Deep Dive
CVE-2025-14507	EventPrime - Events Calendar, Bookings and Tickets <= 4.2.7.0 - Unauthenticated Sensitive Information Exposure via REST API	metagauss	EventPrime – Events Calendar, Bookings and Tickets	Medium	5.3	2026-01-13 13:49:13	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

漏洞数据库 - AI 增强中文 CVE 平台 与情报

漏洞数据库 - AI 增强中文 CVE 平台与情报