Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

漏洞数据库 - AI 增强中文 CVE 平台 与情报

浏览 37+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。

Clear Filters
Found 37 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-67559 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Broken Access Control vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.4 2025-12-09 14:14:09 Deep Dive
CVE-2025-67472 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Cross Site Request Forgery (CSRF) vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 4.3 2025-12-09 14:13:57 Deep Dive
CVE-2025-54677 WordPress Online Booking & Scheduling Calendar for WordPress by vcita Plugin <= 4.5.3 - Arbitrary File Upload Vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Critical 9.1 2025-08-20 08:02:52 Deep Dive
CVE-2025-54676 WordPress Online Booking & Scheduling Calendar for by vcita Plugin plugin <= 4.5.3 - Cross Site Scripting (XSS) Vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 6.5 2025-08-14 10:34:42 Deep Dive
CVE-2025-5240 CRM and Lead Management by vcita <= 2.7.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via type Parameter vcitaCRM and Lead Management by vcita Medium 6.4 2025-07-22 01:44:27 Deep Dive
CVE-2025-32199 WordPress Contact Form Builder by vcita plugin <= 4.10.2 - Cross Site Scripting (XSS) vulnerability eyale-vcContact Form Builder by vcita Medium 6.5 2025-04-10 08:09:44 Deep Dive
CVE-2025-32238 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Sensitive Data Exposure vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 4.3 2025-04-04 15:59:22 Deep Dive
CVE-2024-13702 CRM and Lead Management by vcita <= 2.7.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaCRM and Lead Management by vcita Medium 6.4 2025-03-26 08:21:52 Deep Dive
CVE-2024-13703 CRM and Lead Management by vcita <= 2.7.5 - Missing Authorization to Authenticated (Susbcriber+) Widget Toggle vcitaCRM and Lead Management by vcita Medium 4.3 2025-03-13 01:45:28 Deep Dive
CVE-2024-11895 Online Payments – Get Paid with PayPal, Square & Stripe <= 3.20.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaOnline Payments – Get Paid with PayPal, Square & Stripe Medium 6.4 2025-02-18 07:28:13 Deep Dive
CVE-2024-13717 Contact Form and Calls To Action by vcita <= 2.7.1 - Missing Authorization to Authenticated (Subscriber+) Contact/Widget Toggle vcitaContact Form and Calls To Action by vcita Medium 4.3 2025-01-31 05:22:34 Deep Dive
CVE-2024-11886 Contact Form and Calls To Action by vcita <= 2.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaContact Form and Calls To Action by vcita Medium 6.4 2025-01-31 05:22:34 Deep Dive
CVE-2025-22661 WordPress Online Payments plugin <= 3.20.0 - Cross Site Scripting (XSS) vulnerability vcitaOnline Payments – Get Paid with PayPal, Square & Stripe Medium 6.5 2025-01-21 17:21:51 Deep Dive
CVE-2024-11870 Event Registration Calendar By vcita <= 1.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaEvent Registration Calendar By vcita Medium 6.4 2025-01-15 07:10:47 Deep Dive
CVE-2024-54356 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5 - Cross Site Request Forgery (CSRF) vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.4 2024-12-16 14:14:13 Deep Dive
CVE-2024-9872 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.5.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.4 2024-12-06 08:24:55 Deep Dive
CVE-2024-10056 Contact Form Builder <= 4.10.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via livesite-pay Shortcode eyale-vcContact Form Builder by vcita Medium 6.4 2024-12-05 09:23:07 Deep Dive
CVE-2024-47638 WordPress Online Booking & Scheduling Calendar for WordPress plugin <= 4.4.6 - Reflected Cross Site Scripting (XSS) vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita High 7.1 2024-10-05 13:03:22 Deep Dive
CVE-2024-37262 WordPress Online Booking & Scheduling Calendar plugin <= 4.4.2 - Reflected Cross Site Scripting (XSS) vulnerability vCita.comOnline Booking & Scheduling Calendar for WordPress by vcita High 7.1 2024-07-22 09:02:50 Deep Dive
CVE-2024-37499 WordPress Online Booking & Scheduling Calendar for WordPress plugin <= 4.4.2 - Local File Inclusion vulnerability vCitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 6.5 2024-07-09 11:55:34 Deep Dive