| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-36425 | WordPress Beaver Builder plugin <= 2.5.4.3 - Broken Access Control vulnerability | The Beaver Builder Team | Beaver Builder – WordPress Page Builder (WordPress plugin) | Medium | 5.4 | 2022-09-06 17:18:55 | Deep Dive |
| CVE-2022-2557 | WordPress Team Members Showcase < 4.1.2 - Subscriber+ Arbitrary File Read and Deletion | Unknown | Team – WordPress Team Members Showcase Plugin | 高危 | - | 2022-08-22 15:04:22 | Deep Dive |
| CVE-2022-34650 | WordPress Team plugin <= 1.2.6 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities | wpWax | Team (WordPress plugin) | Medium | 4.1 | 2022-07-22 16:51:41 | Deep Dive |
| CVE-2022-34853 | WordPress Team plugin <= 1.2.6 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities | wpWax | Team (WordPress plugin) | Medium | 4.1 | 2022-07-22 16:49:35 | Deep Dive |
| CVE-2022-29406 | WordPress Team Manager plugin <= 1.6.9 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities | DynamicWebLab | WordPress Team Manager (WordPress plugin) | Medium | 4.1 | 2022-06-15 13:14:22 | Deep Dive |
| CVE-2022-29426 | WordPress Slideshow, Image Slider by 2J plugin <= 1.3.54 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability | 2J Slideshow Team | Slideshow, Image Slider by 2J (WordPress plugin) | Medium | 5.4 | 2022-05-20 20:03:42 | Deep Dive |
| CVE-2022-27844 | WordPress WPvivid plugin <= 0.9.70 - Arbitrary File Read vulnerability | WPvivid Team | Migration, Backup, Staging – WPvivid (WordPress plugin) | Low | 2.7 | 2022-04-11 19:38:16 | Deep Dive |
| CVE-2021-26256 | WordPress Survey Maker plugin <= 2.0.6 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability | Survey Maker team | Survey Maker (WordPress plugin) | Medium | 4.7 | 2022-02-21 17:49:34 | Deep Dive |
| CVE-2022-23984 | WordPress wpDiscuz plugin <= 7.3.11 - Sensitive Information Disclosure | gVectors Team | Comments – wpDiscuz (WordPress plugin) | Low | 3.7 | 2022-02-21 17:49:31 | Deep Dive |
| CVE-2021-24867 | Backdoored Plugins & Themes from AccessPress Themes | AccessPress Themes | Frontend Post WordPress Plugin – AccessPress Anonymous Post | 超危 | - | 2022-02-21 10:45:39 | Deep Dive |
| CVE-2022-25203 | Jenkins 插件跨站脚本漏洞 | Jenkins project | Jenkins Team Views Plugin | 中危 | - | 2022-02-15 16:11:37 | Deep Dive |
| CVE-2021-24307 | All in One SEO Pack < 4.1.0.2 - Admin RCE via unserialize | All in One SEO Team | All in One SEO – Best WordPress SEO Plugin – Easily Improve Your SEO Rankings | 高危 | - | 2021-05-24 10:58:05 | Deep Dive |
| CVE-2021-24248 | Business Directory Plugin < 5.11.1 - Authenticated PHP4 Upload to RCE | Business Directory Team | Business Directory Plugin – Easy Listing Directories for WordPress | 高危 | - | 2021-05-05 18:39:43 | Deep Dive |
| CVE-2021-24249 | Business Directory Plugin < 5.11.2 - Arbitrary Listing Export | Business Directory Team | Business Directory Plugin – Easy Listing Directories for WordPress | 中危 | - | 2021-05-05 18:39:43 | Deep Dive |
| CVE-2021-24250 | Business Directory Plugin < 5.11.2 - Authenticated Stored Cross-Site Scripting | Business Directory Team | Business Directory Plugin – Easy Listing Directories for WordPress | 中危 | - | 2021-05-05 18:39:43 | Deep Dive |
| CVE-2021-24251 | Business Directory Plugin < 5.11.2 - Arbitrary Payment History Update | Business Directory Team | Business Directory Plugin – Easy Listing Directories for WordPress | 中危 | - | 2021-05-05 18:39:43 | Deep Dive |
| CVE-2021-24179 | Business Directory Plugin < 5.11 - Arbitrary File Upload to RCE | Business Directory Team | Business Directory Plugin – Easy Listing Directories for WordPress | 高危 | - | 2021-05-05 18:39:42 | Deep Dive |
| CVE-2021-24178 | Business Directory Plugin < 5.11.1 - Arbitrary Add/Edit/Delete Form Field to Stored XSS | Business Directory Team | Business Directory Plugin – Easy Listing Directories for WordPress | 高危 | - | 2021-05-05 18:39:42 | Deep Dive |
| CVE-2021-21638 | Jenkins Team Foundation Server 跨站请求伪造漏洞 | Jenkins project | Jenkins Team Foundation Server Plugin | 高危 | - | 2021-03-30 11:10:41 | Deep Dive |
| CVE-2021-21637 | Jenkins Team Foundation Server 安全漏洞 | Jenkins project | Jenkins Team Foundation Server Plugin | 中危 | - | 2021-03-30 11:10:40 | Deep Dive |