漏洞列表

漏洞ID	漏洞标题	风险等级	分配者	标签	发布日期
CVE-2024-13852	Option Editor <= 1.0存在跨站请求伪造漏洞可任意修改配置选项	高危	Wordfence		2025-02-18 04:21:15
CVE-2025-0796	Mortgage Lead Capture System <= 8.2.10存在跨站请求伪造导致的配置重置漏洞	中危	Wordfence		2025-02-18 04:21:14
CVE-2024-12813	Open Hours – Easy Opening Hours <= 1.0.9 版本存在经认证的存储型跨站脚本漏洞	中危	Wordfence		2025-02-18 04:21:14
CVE-2024-13595	Simple Signup Form <= 1.6.5 - 经认证的 (Contributor+) SQL注入漏洞	中危	Wordfence		2025-02-18 04:21:13
CVE-2024-13579	WP-Asambleas <= 2.85.0 特权用户存储型跨站脚本漏洞	中危	Wordfence		2025-02-18 04:21:13
CVE-2024-13578	WP-BibTeX <= 3.0.1 存储型跨站脚本漏洞	中危	Wordfence		2025-02-18 04:21:12
CVE-2024-13684	Reset <= 1.6 - 跨站请求伪造导致数据库重置漏洞	高危	Wordfence		2025-02-18 04:21:12
CVE-2024-13501	WP-FormAssembly <= 2.0.11 存在经短代码反射型跨站脚本漏洞	中危	Wordfence		2025-02-18 04:21:12
CVE-2025-0805	Mortgage Calculator / Loan Calculator <= 1.5.20 - 经认证 (贡献者+) 存储型跨站脚本漏洞	中危	Wordfence		2025-02-18 04:21:11
CVE-2024-13581	Simple Charts <= 1.0 - 经认证 (贡献者+) 存储型跨站脚本漏洞	中危	Wordfence		2025-02-18 04:21:11
CVE-2024-13538	WooCommerce用BigBuy Dropshipping Connector组件<= 1.9.19版本存在未认证的完整路径泄漏漏洞	中危	Wordfence		2025-02-18 04:21:11
CVE-2024-13587	Zigaform – Price Calculator & Cost Estimation Form Builder Lite <= 7.4.2 版本存在经认证的 (Contributor+) 存储型跨站脚本漏洞	中危	Wordfence		2025-02-18 04:21:10
CVE-2024-13522	Magayo Lottery Results 2.0.12及下版本 Cross-Site Request Forgery至Stored Cross-Site Scripting漏洞	中危	Wordfence		2025-02-18 04:21:10
CVE-2025-1390	pam_cap:修复潜在的配置解析错误	中危	Anolis		2025-02-18 02:34:45
CVE-2024-13740	ProfileGrid – 用户资料、组和社区 <= 5.9.4.2 - 对认证用户私信的不安全直接对象引用漏洞	中危	Wordfence		2025-02-18 02:06:01
CVE-2024-13741	ProfileGrid – 用户配置文件、组和社区 <= 5.9.4.2 - 经认证 (用户+) 限制的服务器端请求伪造漏洞	中危	Wordfence		2025-02-18 01:44:01
CVE-2025-25224	N/A	N/A	jpcert		2025-02-18 00:12:22
CVE-2025-25223	N/A	N/A	jpcert		2025-02-18 00:11:36
CVE-2025-25222	N/A	N/A	jpcert		2025-02-18 00:11:03
CVE-2025-25221	N/A	N/A	jpcert		2025-02-18 00:10:26