Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 45 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-22630 WordPress Widget Options Plugin <= 4.1.0 - Arbitrary Code Execution vulnerability Marketing FireWidget Options Critical 9.9 2025-02-14 07:10:22 Deep Dive
CVE-2024-13492 Guten Free Options <= 0.9.5 - Reflected XSS UnknownGuten Free Options 中危 -2025-02-07 06:00:07 Deep Dive
CVE-2025-23781 WordPress WM Options Import Export plugin <= 1.0.1 - Sensitive Data Exposure vulnerability Web MumbaiWM Options Import Export High 7.5 2025-01-22 14:29:22 Deep Dive
CVE-2025-22722 WordPress Widget Options plugin <= 4.0.8 - Broken Access Control to Notice Dimissal vulnerability Marketing FireWidget Options Medium 4.3 2025-01-21 17:21:52 Deep Dive
CVE-2025-23797 WordPress WP Options Editor plugin <= 1.1 - CSRF to Privilege Escalation vulnerability Mike SelanderWP Options Editor Critical 9.8 2025-01-16 20:07:05 Deep Dive
CVE-2025-23508 WordPress Extra Options – Favicons plugin <= 1.1.0 - CSRF to Stored XSS vulnerability OrigoThemesExtra Options – Favicons High 7.1 2025-01-16 20:06:08 Deep Dive
CVE-2024-56219 WordPress Widget Options plugin <= 4.0.6.1 - Broken Access Control vulnerability Marketing FireWidget Options Medium 4.3 2024-12-31 10:22:42 Deep Dive
CVE-2024-54249 WordPress Advanced Options Editor plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability Jules ColleAdvanced Options Editor High 7.1 2024-12-16 15:37:46 Deep Dive
CVE-2024-8672 Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution marketingfireWidget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets Critical 9.9 2024-11-28 09:47:12 Deep Dive
CVE-2024-9434 WPGlobus Translate Options <= 2.2.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting alexgffWPGlobus Translate Options Medium 6.1 2024-10-31 06:48:56 Deep Dive
CVE-2024-9214 Extra Product Options Builder for WooCommerce <= 1.2.133 - Unauthenticated Stored Cross-Site Scripting edgarrojasExtra Product Options Builder for WooCommerce Medium 6.1 2024-10-24 11:03:16 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-8258 Insecure Electron Fuses in Logitech Options Plus Allowing Arbitrary Code Execution on macOS LogitechLogitech Options Plus--2024-09-10 08:36:34 Deep Dive
CVE-2024-8011 Logitech Options 安全漏洞 LogitechOptions+--2024-08-25 11:44:46 Deep Dive
CVE-2024-7257 YayExtra – WooCommerce Extra Product Options <= 1.3.7 - Unauthenticated Arbitrary File Upload via handle_upload_file Function yaycommerceYayExtra – WooCommerce Extra Product Options Critical 9.8 2024-08-03 09:37:19 Deep Dive
CVE-2024-35727 WordPress Extra Product Options for WooCommerce plugin <= 3.0.6 - Broken Access Control vulnerability actproExtra Product Options for WooCommerce Medium 4.3 2024-06-10 07:45:41 Deep Dive
CVE-2024-35691 WordPress Widget Options - Extended plugin <= 5.1.0 - Multiple Data Exposure Vulnerability Marketing Fire, LLCWidget Options - Extended Medium 4.3 2024-06-08 14:38:09 Deep Dive
CVE-2024-31940 WordPress Extra Product Options Builder for WooCommerce plugin <= 1.2.104 - Cross Site Request Forgery (CSRF) vulnerability RedNaoExtra Product Options Builder for WooCommerce Medium 4.3 2024-04-15 09:15:47 Deep Dive
CVE-2023-47658 WordPress Extra Product Options for WooCommerce Plugin <= 3.0.3 is vulnerable to Cross Site Scripting (XSS) actproExtra Product Options for WooCommerce Medium 5.9 2023-11-14 18:40:11 Deep Dive
CVE-2023-28420 WordPress Custom Options Plus Plugin <= 1.8.1 is vulnerable to Cross Site Request Forgery (CSRF) Leo CaseiroCustom Options Plus Medium 5.4 2023-11-12 22:11:09 Deep Dive