Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 4525 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-14804 Frontend File Manager < 23.5 - Subscriber+ Arbitrary File Deletion UnknownFrontend File Manager Plugin 中危 -2026-01-07 06:00:10 Deep Dive
CVE-2025-14719 Relevanssi (Free < 4.26.0, Premium < 2.29.0) - Contributor+ SQLi UnknownRelevanssi 中危 -2026-01-07 06:00:09 Deep Dive
CVE-2025-9543 FlexTable Google Sheets Connector < 3.19.2 - Admin+ Stored XSS UnknownFlexTable 低危 -2026-01-05 06:00:10 Deep Dive
CVE-2025-14124 Team < 5.0.11 - Unauthenticated SQLi UnknownTeam 中危 -2026-01-05 06:00:07 Deep Dive
CVE-2025-14072 Ninja Forms < 3.13.3 - Unauthenticated Token Generation and Submission Disclosure UnknownNinja Forms 高危 -2026-01-02 06:00:12 Deep Dive
CVE-2025-13456 Shopbuilder < 3.2.2 - Reflected XSS UnknownShopBuilder 中危 -2026-01-02 06:00:12 Deep Dive
CVE-2025-13153 Logo Slider < 4.9.0 - Contributor+ Stored XSS UnknownLogo Slider 中危 -2026-01-02 06:00:11 Deep Dive
CVE-2025-12685 WPBookit <= 1.0.7 - Customer Deletion via CSRF UnknownWPBookit 中危 -2026-01-02 06:00:10 Deep Dive
CVE-2025-13820 Comments – wpDiscuz < 7.6.40 - Unauthenticated Account Takeover UnknownComments 超危 -2026-01-01 06:00:03 Deep Dive
CVE-2025-14434 Ultimate Post Kit < 4.0.16 – Unauthenticated Arbitrary Post Content Disclosure UnknownUltimate Post Kit Addons for Elementor 中危 -2025-12-31 06:00:11 Deep Dive
CVE-2025-13029 Knowband Mobile App Builder for wooCommerce < 3.0.0 – Unauthenticated Arbitrary User Deletion UnknownKnowband Mobile App Builder 高危 -2025-12-31 06:00:03 Deep Dive
CVE-2025-14313 Advance WP Query Search Filter <= 1.0.10 - Reflected XSS via taxo_ajax UnknownAdvance WP Query Search Filter 中危 -2025-12-30 06:00:05 Deep Dive
CVE-2025-14312 Advance WP Query Search Filter <= 1.0.10 - Reflected XSS via counter UnknownAdvance WP Query Search Filter 中危 -2025-12-30 06:00:04 Deep Dive
CVE-2025-13958 YaMaps < 0.6.40 - Contributor+ Stored XSS UnknownYaMaps for WordPress Plugin 中危 -2025-12-29 06:00:11 Deep Dive
CVE-2025-13417 Plugin Organizer < 10.2.4 - Subscriber+ SQLi UnknownPlugin Organizer 中危 -2025-12-29 06:00:09 Deep Dive
CVE-2025-13407 GravityForms < 2.9.23.1 - Unauthenticated Arbitrary File Upload UnknownGravity Forms--2025-12-24 06:00:05 Deep Dive
CVE-2025-12820 Pure WC Variation Swatches <= 1.1.7 - Unauthenticated Settings Update UnknownPure WC Variation Swatches--2025-12-20 06:00:08 Deep Dive
CVE-2025-13307 Ocean Modal Window < 2.3.3 - Editor+ Remote Code Execution via Modal Conditions UnknownOcean Modal Window--2025-12-19 06:00:06 Deep Dive
CVE-2023-53901 WBCE CMS 1.6.1 Cross-Site Scripting and Open Redirect Vulnerability UnknownWBCE CMS Medium 5.4 2025-12-16 17:03:48 Deep Dive
CVE-2023-53899 PodcastGenerator 3.2.9 Blind Server-Side Request Forgery via XML Injection UnknownUnknown Critical 9.8 2025-12-16 17:03:47 Deep Dive