浏览 18+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-1657 | Directory Listings WordPress plugin – uListing <= 2.2.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Meta Update and PHP Object Injection | stylemix | Directory Listings WordPress plugin – uListing | High | 8.8 | 2025-03-15 02:22:42 | Deep Dive |
| CVE-2025-1653 | Directory Listings WordPress plugin – uListing <= 2.2.0 - Authenticated (Subscriber+) Privilege Escalation | stylemix | Directory Listings WordPress plugin – uListing | High | 8.8 | 2025-03-15 02:22:42 | Deep Dive |
| CVE-2021-4381 | uListing <= 1.6.6 - Unauthenticated Options Changes via wp_route | stylemix | Directory Listings WordPress plugin – uListing | Critical | 9.8 | 2023-06-07 01:51:55 | Deep Dive |
| CVE-2021-4370 | uListing <= 1.6.6 - Missing Authorization | stylemix | Directory Listings WordPress plugin – uListing | Critical | 9.8 | 2023-06-07 01:51:43 | Deep Dive |
| CVE-2021-4357 | uListing <= 1.6.6 - Unauthenticated Arbitrary Post/Page Deletion | stylemix | Directory Listings WordPress plugin – uListing | Critical | 9.1 | 2023-06-07 01:51:26 | Deep Dive |
| CVE-2021-4345 | uListing <= 1.6.6 - Unauthenticated Arbitrary Roles and Capabilities Creation/Deletion | stylemix | Directory Listings WordPress plugin – uListing | Medium | 6.5 | 2023-06-07 01:51:18 | Deep Dive |
| CVE-2021-4346 | uListing <= 1.6.6 - Unauthenticated Arbitrary Account Changes | stylemix | Directory Listings WordPress plugin – uListing | Critical | 9.8 | 2023-06-07 01:51:17 | Deep Dive |
| CVE-2021-4343 | uListing <= 1.6.6 - Unauthenticated Arbitrary Account Creation | stylemix | Directory Listings WordPress plugin – uListing | Critical | 9.8 | 2023-06-07 01:51:15 | Deep Dive |
| CVE-2021-4341 | uListing <= 1.6.6 - Unauthenticated Wordpress Options Changes via AJAX | stylemix | Directory Listings WordPress plugin – uListing | Critical | 9.8 | 2023-06-07 01:51:13 | Deep Dive |
| CVE-2021-4340 | uListing <= 1.6.6 - Unauthenticated SQL Injection | stylemix | Directory Listings WordPress plugin – uListing | Critical | 9.8 | 2023-06-07 01:51:12 | Deep Dive |
| CVE-2021-4339 | uListing <= 1.6.6 - Unauthenticated Information Disclosure | stylemix | Directory Listings WordPress plugin – uListing | High | 7.5 | 2023-06-07 01:51:12 | Deep Dive |
| CVE-2021-36875 | WordPress uListing plugin <= 2.0.5 - Auth. Reflected Cross-Site Scripting (XSS) vulnerability | Stylemix | Directory Listings WordPress plugin – uListing | Medium | 5.9 | 2021-09-27 15:32:53 | Deep Dive |
| CVE-2021-36880 | WordPress uListing plugin <= 2.0.3 - Unauthenticated SQL Injection (SQLi) vulnerability | StylemixThemes | uListing (WordPress plugin) | High | 8.6 | 2021-09-27 15:32:47 | Deep Dive |
| CVE-2021-36874 | WordPress uListing plugin <= 2.0.5 - Authenticated Insecure Direct Object References (IDOR) vulnerability | StylemixThemes | uListing (WordPress plugin) | High | 7.1 | 2021-09-27 15:32:40 | Deep Dive |
| CVE-2021-36877 | WordPress uListing plugin <= 2.0.5 - Modify User Roles via Cross-Site Request Forgery (CSRF) vulnerability | StylemixThemes | uListing (WordPress plugin) | Medium | 4.3 | 2021-09-27 15:32:30 | Deep Dive |
| CVE-2021-36876 | WordPress uListing plugin <= 2.0.5 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities | StylemixThemes | uListing (WordPress plugin) | Medium | 5.4 | 2021-09-27 15:32:23 | Deep Dive |
| CVE-2021-36879 | WordPress uListing plugin <= 2.0.5 - Unauthenticated Privilege Escalation vulnerability | StylemixThemes | uListing (WordPress plugin) | Critical | 9.8 | 2021-09-27 15:32:15 | Deep Dive |
| CVE-2021-36878 | WordPress uListing plugin <= 2.0.5 - Settings Update via Cross-Site Request Forgery (CSRF) vulnerability | StylemixThemes | uListing (WordPress plugin) | Medium | 4.3 | 2021-09-27 14:13:00 | Deep Dive |