Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 130 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-3559 Custom Field Suite <= 2.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via cfs[post_content] mgibbs189Custom Field Suite Medium 6.4 2024-06-12 04:32:14 Deep Dive
CVE-2024-23518 WordPress ACF Photo Gallery Field plugin <= 2.6 - Broken Access Control vulnerability Navneil NaickerACF Photo Gallery Field Medium 4.3 2024-06-11 17:05:02 Deep Dive
CVE-2024-0653 Custom Field Template <= 2.6.1 - Authenticated (Admin+) Stored Cross-Site Scritping hiroaki-miyashitaCustom Field Template Medium 4.4 2024-06-11 02:01:58 Deep Dive
CVE-2023-6748 Custom Field Template <= 2.6.1 - Authenticated(Contributor+) Information Exposure hiroaki-miyashitaCustom Field Template Medium 4.3 2024-06-11 02:01:57 Deep Dive
CVE-2024-0627 Custom Field Template <= 2.6.1 - Authenticated(Constibutor+) Stored Cross-Site Scripting via Custom Field Name hiroaki-miyashitaCustom Field Template Medium 6.4 2024-06-11 02:01:56 Deep Dive
CVE-2023-6745 Custom Field Template <= 2.6.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcode hiroaki-miyashitaCustom Field Template Medium 6.4 2024-06-11 02:01:52 Deep Dive
CVE-2024-35658 WordPress Checkout Field Editor for WooCommerce (Pro) plugin <= 3.6.2 - Unauthenticated Arbitrary File Deletion vulnerability ThemeHighCheckout Field Editor for WooCommerce (Pro) High 8.6 2024-06-10 15:45:09 Deep Dive
CVE-2024-3068 Custom Field Suite <= 2.6.5 - Authenticated (Admin+) Stored Cross-Site Scripting mgibbs189Custom Field Suite Medium 4.4 2024-05-09 20:03:19 Deep Dive
CVE-2024-2752 Where Did You Hear About Us Checkout Field for WooCommerce <= 1.3.1 - Authenticated (Shop Manager+) Stored Cross-Site Scripting wooassistWhere Did You Hear About Us Checkout Field for WooCommerce Medium 5.5 2024-05-02 16:52:54 Deep Dive
CVE-2024-33641 WordPress Custom field finder plugin <= 0.3 - PHP Object Injection vulnerability Team YoastCustom field finder Medium 5.4 2024-04-29 07:36:15 Deep Dive
CVE-2024-31262 WordPress WooCommerce Checkout Field Editor (Checkout Manager) plugin <= 2.1.8 - Cross Site Request Forgery (CSRF) vulnerability JcodexWooCommerce Checkout Field Editor (Checkout Manager) Medium 5.4 2024-04-12 12:49:48 Deep Dive
CVE-2024-31091 WordPress Custom Field Bulk Editor plugin <= 1.9.1 - Cross Site Scripting vulnerability SparkWeb Interactive, Inc.Custom Field Bulk Editor High 7.1 2024-03-31 19:25:20 Deep Dive
CVE-2024-25919 WordPress Custom Field Template plugin <= 2.6 - Cross Site Scripting (XSS) vulnerability Hiroaki MiyashitaCustom Field Template Medium 6.5 2024-03-15 13:03:03 Deep Dive
CVE-2024-0689 Custom Field Suite <= 2.6.4 - Authenticated (Admin+) Stored Cross-Site Scripting mgibbs189Custom Field Suite Medium 4.4 2024-02-29 02:33:54 Deep Dive
CVE-2023-7033 Mitsubishi Electric MELSEC iQ-F series 安全漏洞 Mitsubishi Electric CorporationMELSEC iQ-R series CPU module R00CPU Medium 5.3 2024-02-27 03:47:05 Deep Dive
CVE-2024-25925 WordPress WooCommerce Easy Checkout Field Editor, Fees & Discounts Plugin <= 3.5.12 is vulnerable to Arbitrary File Upload SYSBASICSWooCommerce Easy Checkout Field Editor, Fees & Discounts Critical 10.0 2024-02-26 15:09:16 Deep Dive
CVE-2023-5005 Autocomplete Location field Contact Form 7 < 3.0 - Admin+ Store Cross-Site Scripting UnknownAutocomplete Location field Contact Form 7--2023-12-18 20:07:55 Deep Dive
CVE-2023-45604 WordPress Get Custom Field Values Plugin <= 4.0.1 is vulnerable to Cross Site Scripting (XSS) Scott ReillyGet Custom Field Values Medium 5.9 2023-10-18 13:17:23 Deep Dive
CVE-2023-5329 Field Logic DataCube4 Web API improper authentication Field LogicDataCube4 Medium 4.3 2023-10-02 00:00:07 Deep Dive
CVE-2023-3328 Custom Field For WP Job Manager < 1.2 - Admin+ Stored XSS UnknownCustom Field For WP Job Manager 中危 -2023-08-14 19:10:22 Deep Dive