Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 231 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-22286 WordPress LTL Freight Quotes – Worldwide Express Edition plugin <= 5.0.21 - Reflected Cross Site Scripting (XSS) vulnerability enituretechnologyLTL Freight Quotes – Worldwide Express Edition High 7.1 2025-02-16 22:17:17 Deep Dive
CVE-2025-22291 WordPress LTL Freight Quotes – Worldwide Express Edition plugin <= 5.0.20 - Arbitrary Content Deletion vulnerability enituretechnologyLTL Freight Quotes – Worldwide Express Edition Medium 5.3 2025-02-16 22:17:17 Deep Dive
CVE-2024-13473 LTL Freight Quotes - Worldwide Express Edition <= 5.0.20 - Unauthenticated SQL Injection enituretechnologyLTL Freight Quotes – Worldwide Express Edition High 7.5 2025-02-12 09:22:49 Deep Dive
CVE-2025-24667 WordPress Small Package Quotes Plugin <= 5.2.17 - SQL Injection vulnerability enituretechnologySmall Package Quotes – Worldwide Express Edition Critical 9.3 2025-01-27 14:22:17 Deep Dive
CVE-2025-24664 WordPress LTL Freight Quotes Plugin <= 5.0.20 - SQL Injection vulnerability enituretechnologyLTL Freight Quotes – Worldwide Express Edition Critical 9.3 2025-01-27 13:59:49 Deep Dive
CVE-2025-21557 Oracle Application Express 安全漏洞 Oracle CorporationOracle Application Express Medium 5.4 2025-01-21 20:53:19 Deep Dive
CVE-2024-12568 Email Subscribers < 5.7.45 - Admin+ Stored XSS UnknownEmail Subscribers by Icegram Express 中危 -2025-01-13 06:00:11 Deep Dive
CVE-2024-12567 Email Subscribers < 5.7.45 - Admin+ Stored XSS UnknownEmail Subscribers by Icegram Express 中危 -2025-01-13 06:00:10 Deep Dive
CVE-2024-12566 Email Subscribers < 5.7.45 - Admin+ Stored XSS UnknownEmail Subscribers by Icegram Express 中危 -2025-01-13 06:00:08 Deep Dive
CVE-2024-11636 Email Subscribers < 5.7.45 - Admin+ Stored XSS UnknownEmail Subscribers by Icegram Express 中危 -2025-01-13 06:00:01 Deep Dive
CVE-2024-49249 WordPress SMSA Shipping plugin <= 2.3 - Arbitrary File Deletion vulnerability SMSA ExpressSMSA Shipping High 8.6 2025-01-07 10:49:35 Deep Dive
CVE-2024-12311 Email Subscribers < 5.7.44 - Admin+ SQL Injection UnknownEmail Subscribers by Icegram Express 中危 -2025-01-06 06:00:16 Deep Dive
CVE-2024-54305 WordPress J&T Express Malaysia plugin <= 2.0.13 - Reflected Cross Site Scripting (XSS) vulnerability jtexpressJ&T Express Malaysia High 7.1 2024-12-13 14:25:15 Deep Dive
CVE-2024-52474 WordPress Express Payments plugin <= 1.1.8 - SQL Injection vulnerability Сервис "Экспресс Платежи"Express Payments Module Critical 9.3 2024-11-28 10:44:29 Deep Dive
CVE-2024-10491 Preload arbitrary resources by injecting additional `Link` headers expressexpress Medium 4.0 2024-10-29 16:23:21 Deep Dive
CVE-2024-21261 Oracle Application Express 安全漏洞 Oracle CorporationOracle Application Express Medium 4.9 2024-10-15 19:52:55 Deep Dive
CVE-2024-9266 Open Redirect expressjsexpress Medium 4.7 2024-10-03 18:56:38 Deep Dive
CVE-2024-8254 Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce <= 5.7.34 - Authenticated (Subscriber+) Arbitrary Shortcode Execution icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Medium 5.4 2024-10-02 06:46:02 Deep Dive
CVE-2024-8771 Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce <= 5.7.34 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Medium 4.3 2024-09-26 15:30:34 Deep Dive
CVE-2024-43796 express vulnerable to XSS via response.redirect() expressjsexpress Medium 5.0 2024-09-10 14:36:27 Deep Dive