浏览 15+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-12639 | wModes – Catalog Mode, Product Pricing, Enquiry Forms & Promotions | for WooCommerce <= 1.2.2 - Missing Authorization to Sensitive Information Disclosure | sundayfanz | wModes – Catalog Mode, Product Pricing, Enquiry Forms & Promotions | for WooCommerce | Medium | 4.3 | 2025-11-18 09:27:39 | Deep Dive |
| CVE-2025-31580 | WordPress Ni WooCommerce Product Enquiry plugin <= 4.1.8 - Broken Access Control vulnerability | Anzar Ahmed | Ni WooCommerce Product Enquiry | High | 7.5 | 2025-04-01 20:58:14 | Deep Dive |
| CVE-2023-50899 | WordPress Product Catalog Enquiry for WooCommerce by MultiVendorX plugin <= 5.0.2 - Broken Access Control vulnerability | MultiVendorX | Product Catalog Enquiry for WooCommerce by MultiVendorX | Medium | 5.4 | 2024-12-09 11:29:54 | Deep Dive |
| CVE-2024-11034 | Request a Quote for WooCommerce and Elementor – Get a Quote Button – Product Enquiry Form Popup – Product Quotation <= 1.4 - Unauthenticated Arbitrary Shortcode Execution via fire_contact_form | wpbean | Request a Quote for WooCommerce – Get a Quote Button | High | 7.3 | 2024-11-23 11:23:16 | Deep Dive |
| CVE-2024-8922 | Product Enquiry for WooCommerce <= 2.2.33.33 - Authenticated (Author+) PHP Object Injection in enquiry_detail.php | rajeshsingh520 | PiWeb Product Enquiry or product catalog for WooCommerce | High | 8.8 | 2024-09-27 05:31:03 | Deep Dive |
| CVE-2024-3964 | Product Enquiry for WooCommerce < 3.1.8 - Admin+ Stored XSS | Unknown | Product Enquiry for WooCommerce | - | - | 2024-07-13 06:00:05 | Deep Dive |
| CVE-2024-25929 | WordPress Product Catalog Mode For Woocommerce plugin <= 5.0.5 - Broken Access Control vulnerability | MultiVendorX | Product Catalog Enquiry for WooCommerce by MultiVendorX | Medium | 6.5 | 2024-06-09 10:30:17 | Deep Dive |
| CVE-2023-6626 | Product Enquiry for WooCommerce < 3.1 - Admin+ Stored XSS | Unknown | Product Enquiry for WooCommerce | 中危 | - | 2024-01-22 19:14:28 | Deep Dive |
| CVE-2023-6625 | Product Enquiry for WooCommerce < 3.1 - Arbitrary Enquiry Deletion via CSRF | Unknown | Product Enquiry for WooCommerce | 中危 | - | 2024-01-22 19:14:24 | Deep Dive |
| CVE-2023-7151 | Product Enquiry for WooCommerce < 3.2 - Reflected XSS | Unknown | Product Enquiry for WooCommerce | 中危 | - | 2024-01-16 15:57:53 | Deep Dive |
| CVE-2023-49761 | WordPress Product Enquiry for WooCommerce Plugin <= 3.0 is vulnerable to Cross Site Request Forgery (CSRF) | Gravity Master | Product Enquiry for WooCommerce | Medium | 5.4 | 2023-12-18 22:24:46 | Deep Dive |
| CVE-2023-32796 | WordPress WooCommerce Product Enquiry Plugin <= 2.3.4 is vulnerable to Cross Site Scripting (XSS) | MingoCommerce | WooCommerce Product Enquiry | High | 7.1 | 2023-11-16 19:57:09 | Deep Dive |
| CVE-2023-47512 | WordPress Product Enquiry for WooCommerce Plugin <= 3.0 is vulnerable to Cross Site Scripting (XSS) | Gravity Master | Product Enquiry for WooCommerce | High | 7.1 | 2023-11-16 18:11:51 | Deep Dive |
| CVE-2023-47696 | WordPress Product Enquiry for WooCommerce Plugin <= 3.0 is vulnerable to Cross Site Scripting (XSS) | Gravity Master | Product Enquiry for WooCommerce | High | 7.1 | 2023-11-13 22:33:20 | Deep Dive |
| CVE-2023-29170 | WordPress Product Enquiry for WooCommerce Plugin <= 2.2.12 is vulnerable to Cross Site Scripting (XSS) | PI Websolution | Product Enquiry for WooCommerce, WooCommerce product catalog | Medium | 5.9 | 2023-04-07 14:35:55 | Deep Dive |