CWE-639 通过用户控制密钥绕过授权机制 类弱点 1033 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-14998 | WordPress plugin Branda 安全漏洞 — Branda – White Label & Branding, Free Login Page Customizer | 9.8 | Critical | 2026-01-02 |
| CVE-2025-49352 | WordPress plugin Order Cancellation & Returns for WooCommerce 安全漏洞 — Order Cancellation & Returns for WooCommerce | 4.3 | Medium | 2025-12-31 |
| CVE-2025-49334 | WordPress plugin MyD Delivery 安全漏洞 — MyD Delivery | 5.3 | Medium | 2025-12-31 |
| CVE-2025-63053 | WordPress plugin Master Addons for Elementor 安全漏洞 — Master Addons for Elementor | 5.3 | Medium | 2025-12-31 |
| CVE-2025-69030 | WordPress plugin Backpack Traveler 安全漏洞 — Backpack Traveler | 5.4 | Medium | 2025-12-30 |
| CVE-2025-69032 | WordPress plugin FiveStar 安全漏洞 — FiveStar | 5.4 | Medium | 2025-12-30 |
| CVE-2025-69029 | WordPress plugin Struktur 安全漏洞 — Struktur | 5.4 | Medium | 2025-12-30 |
| CVE-2025-68997 | WordPress plugin wpDiscuz 安全漏洞 — wpDiscuz | 9.1 | - | 2025-12-30 |
| CVE-2025-68979 | WordPress plugin Google Calendar Events 安全漏洞 — Google Calendar Events | 5.3 | Medium | 2025-12-30 |
| CVE-2025-68975 | WordPress plugin Eagle Booking 安全漏洞 — Eagle Booking | 4.3 | Medium | 2025-12-30 |
| CVE-2025-68502 | WordPress plugin JetPopup 安全漏洞 — JetPopup | 4.3 | Medium | 2025-12-29 |
| CVE-2019-25235 | Smartwares HOME easy 安全漏洞 — Smartwares HOME easy | 9.8 | Critical | 2025-12-24 |
| CVE-2018-25129 | SOCA Access Control System 安全漏洞 — SOCA Access Control System | 7.5 | High | 2025-12-24 |
| CVE-2025-67909 | WordPress plugin Membership For WooCommerce 安全漏洞 — Membership For WooCommerce | 7.5 | High | 2025-12-24 |
| CVE-2021-47721 | OrangeScrum 安全漏洞 — orangescrum | 8.8 | High | 2025-12-23 |
| CVE-2023-53955 | Sound4 IMPACT 安全漏洞 — Impact/Pulse/First | 9.8 | Critical | 2025-12-22 |
| CVE-2025-7733 | WordPress plugin WP JobHunt 安全漏洞 — WP JobHunt | 4.3 | Medium | 2025-12-20 |
| CVE-2025-14881 | pretix 安全漏洞 — pretix | 7.5AI | HighAI | 2025-12-19 |
| CVE-2025-14882 | pretix-offlinesales 安全漏洞 — pretix-offlinesales | 7.5AI | HighAI | 2025-12-19 |
| CVE-2025-63043 | WordPress plugin Post Grid and Gutenberg Blocks 安全漏洞 — Post Grid and Gutenberg Blocks | 5.3 | Medium | 2025-12-18 |
| CVE-2025-64282 | WordPress plugin Radius Blocks 安全漏洞 — Radius Blocks | 4.3 | Medium | 2025-12-18 |
| CVE-2025-1031 | Utarit SoliClub 安全漏洞 — SoliClub | 7.5 | High | 2025-12-18 |
| CVE-2025-13110 | WordPress plugin HUSKY 安全漏洞 — HUSKY – Products Filter Professional for WooCommerce | 4.3 | Medium | 2025-12-18 |
| CVE-2025-10910 | Govee H6056 安全漏洞 — H6056 | 9.8AI | CriticalAI | 2025-12-18 |
| CVE-2025-10019 | WordPress plugin Contact Form Email 安全漏洞 — Contact Form Email | 6.5 | Medium | 2025-12-18 |
| CVE-2023-53930 | ProjectSend 安全漏洞 — projectSend | 7.5 | High | 2025-12-17 |
| CVE-2023-53914 | UliCMS 安全漏洞 — Ulicms | 9.8 | Critical | 2025-12-17 |
| CVE-2025-34438 | AVideo 安全漏洞 — AVideo | 4.3AI | MediumAI | 2025-12-17 |
| CVE-2025-34437 | AVideo 安全漏洞 — AVideo | 4.3AI | MediumAI | 2025-12-17 |
| CVE-2025-34435 | AVideo 安全漏洞 — AVideo | 6.5AI | MediumAI | 2025-12-17 |
CWE-639(通过用户控制密钥绕过授权机制) 是常见的弱点类别,本平台收录该类弱点关联的 1033 条 CVE 漏洞。