浏览 31+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-27049 | WordPress Jobica Core plugin <= 1.4.2 - Account Takeover vulnerability | NooTheme | Jobica Core | Critical | 9.8 | 2026-03-25 16:14:54 | Deep Dive |
| CVE-2026-25340 | WordPress Jobmonster theme < 4.8.4 - SQL Injection vulnerability | NooTheme | Jobmonster | Critical | 9.3 | 2026-03-25 16:14:42 | Deep Dive |
| CVE-2026-24981 | WordPress Visionary Core plugin <= 1.4.9 - PHP Object Injection vulnerability | NooTheme | Visionary Core | High | 8.8 | 2026-03-25 16:14:36 | Deep Dive |
| CVE-2026-24980 | WordPress Visionary Core plugin <= 1.4.9 - Reflected Cross Site Scripting (XSS) vulnerability | NooTheme | Visionary Core | High | 7.1 | 2026-03-25 16:14:36 | Deep Dive |
| CVE-2026-24975 | WordPress Organici Library plugin <= 2.1.2 - Reflected Cross Site Scripting (XSS) vulnerability | NooTheme | Organici Library | High | 7.1 | 2026-03-25 16:14:35 | Deep Dive |
| CVE-2026-24976 | WordPress Organici Library plugin <= 2.1.2 - PHP Object Injection vulnerability | NooTheme | Organici Library | High | 8.8 | 2026-03-25 16:14:35 | Deep Dive |
| CVE-2026-24977 | WordPress Organici Library plugin <= 2.1.2 - SQL Injection vulnerability | NooTheme | Organici Library | High | 8.5 | 2026-03-25 16:14:35 | Deep Dive |
| CVE-2026-24978 | WordPress Jobica Core plugin <= 1.4.1 - PHP Object Injection vulnerability | NooTheme | Jobica Core | High | 8.8 | 2026-03-25 16:14:35 | Deep Dive |
| CVE-2026-24979 | WordPress Jobica Core plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability | NooTheme | Jobica Core | High | 7.1 | 2026-03-25 16:14:35 | Deep Dive |
| CVE-2026-24973 | WordPress CitiLights theme <= 3.7.1 - Reflected Cross Site Scripting (XSS) vulnerability | NooTheme | CitiLights | High | 7.1 | 2026-03-25 16:14:34 | Deep Dive |
| CVE-2026-24974 | WordPress CitiLights theme <= 3.7.1 - PHP Object Injection vulnerability | NooTheme | CitiLights | High | 8.8 | 2026-03-25 16:14:34 | Deep Dive |
| CVE-2026-25367 | WordPress CitiLights theme < 3.7.2 - Broken Access Control vulnerability | NooTheme | CitiLights | - | - | 2026-02-19 08:27:00 | Deep Dive |
| CVE-2025-67524 | WordPress Jobmonster Elementor Addon plugin <= 1.1.4 - Local File Inclusion vulnerability | NooTheme | Jobmonster Elementor Addon | High | 7.5 | 2025-12-09 14:14:00 | Deep Dive |
| CVE-2025-67522 | WordPress Jobmonster theme <= 4.8.2 - Local File Inclusion vulnerability | NooTheme | Jobmonster | High | 7.5 | 2025-12-09 14:13:59 | Deep Dive |
| CVE-2025-11985 | Realty Portal <= 0.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update | nootheme | Realty Portal | High | 8.8 | 2025-11-21 07:31:58 | Deep Dive |
| CVE-2025-54737 | WordPress Jobmonster theme <= 4.7.8 - Cross Site Scripting (XSS) vulnerability | NooTheme | Jobmonster | 中危 | - | 2025-11-06 15:54:18 | Deep Dive |
| CVE-2025-54718 | WordPress Yogi - Health Beauty & Yoga theme <= 2.9.2 - Cross Site Scripting (XSS) vulnerability | NooTheme | Yogi - Health Beauty & Yoga | 中危 | - | 2025-11-06 15:54:15 | Deep Dive |
| CVE-2025-54719 | WordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 - Deserialization of untrusted data Vulnerability | NooTheme | Yogi - Health Beauty & Yoga | 中危 | - | 2025-11-06 15:54:15 | Deep Dive |
| CVE-2025-53585 | WordPress WeMusic theme <= 1.9.1 - Cross Site Scripting (XSS) vulnerability | NooTheme | WeMusic | High | 7.1 | 2025-11-06 15:54:13 | Deep Dive |
| CVE-2025-53586 | WordPress WeMusic Theme <= 1.9.1 - PHP Object Injection Vulnerability | NooTheme | WeMusic | High | 8.8 | 2025-11-06 15:54:13 | Deep Dive |