| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-32517 | WordPress Contact Manager plugin <= 9.1 - Reflected Cross Site Scripting (XSS) vulnerability | Kleor | Contact Manager | 中危 | - | 2026-03-25 16:15:07 | Deep Dive |
| CVE-2025-68853 | WordPress Contact Manager plugin <= 9.1.1 - PHP Object Injection vulnerability | Kleor | Contact Manager | High | 8.8 | 2026-02-20 15:46:43 | Deep Dive |
| CVE-2025-9519 | Easy Timer <= 4.2.1 - Authenticated (Editor+) Remote Code Execution via Shortcode | kleor | Easy Timer | High | 7.2 | 2025-09-04 04:23:49 | Deep Dive |
| CVE-2025-8783 | Contact Manager <= 8.6.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'title' | kleor | Contact Manager | Medium | 4.4 | 2025-08-19 10:57:28 | Deep Dive |
| CVE-2025-1028 | Contact Manager <= 8.6.4 - Unauthenticated Arbitrary Double File Extension Upload | kleor | Contact Manager | High | 8.1 | 2025-02-05 03:21:18 | Deep Dive |