codepeople 厂商漏洞列表 / CVE 中文分析 73

codepeople 厂商相关 73 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

Codepeople 主要提供数字资产管理及内容管理系统解决方案，其开源项目广泛用于网站构建。截至最新统计，该厂商已收录 70 条 CVE，历史漏洞多集中于跨站脚本（XSS）与远程代码执行（RCE），部分版本存在越权访问风险。这些缺陷常源于输入验证不足或权限控制逻辑缺陷。建议用户及时更新补丁，强化配置审查，以应对潜在的安全威胁，确保系统稳定性与数据隐私。

CVEs 73

CVE ID	标题	CVSS	风险等级	Published
CVE-2025-24626	WordPress plugin Music Store 跨站脚本漏洞 — Music StoreCWE-79	7.1	High	2025-01-27
CVE-2025-24723	WordPress plugin Booking Calendar Contact Form 跨站脚本漏洞 — Booking Calendar Contact FormCWE-79	5.9	Medium	2025-01-24
CVE-2025-24727	WordPress plugin Contact Form Email 跨站脚本漏洞 — Contact Form EmailCWE-79	5.9	Medium	2025-01-24
CVE-2025-24672	WordPress plugin Form Builder CP SQL注入漏洞 — Form Builder CPCWE-89	8.5	High	2025-01-24
CVE-2024-13680	WordPress plugin Form Builder CP SQL注入漏洞 — Form Builder CPCWE-89	6.5	Medium	2025-01-24
CVE-2023-45649	WordPress plugin Appointment Hour Booking 安全漏洞 — Appointment Hour BookingCWE-862	5.3	Medium	2025-01-02
CVE-2024-12601	WordPress plugin Calculated Fields Form 资源管理错误漏洞 — Calculated Fields FormCWE-400	5.3	Medium	2024-12-17
CVE-2023-23814	WordPress plugin CP Multi View Event Calendar 安全漏洞 — CP Multi View Event CalendarCWE-862	3.8	Low	2024-12-09
CVE-2023-23895	WordPress plugin WP Time Slots Booking Form 安全漏洞 — WP Time Slots Booking FormCWE-862	4.7	Medium	2024-12-09
CVE-2023-25037	WordPress plugin Booking Calendar Contact Form 安全漏洞 — Booking Calendar Contact FormCWE-862	4.3	Medium	2024-12-09
CVE-2024-9940	WordPress plugin Calculated Fields Form 安全漏洞 — Calculated Fields FormCWE-75	5.3	Medium	2024-10-17
CVE-2024-47297	WordPress plugin CP Polls 跨站脚本漏洞 — CP PollsCWE-79	7.1	High	2024-10-06
CVE-2024-35735	WordPress plugin WP Time Slots Booking Form 安全漏洞 — WP Time Slots Booking FormCWE-862	5.3	Medium	2024-06-10
CVE-2024-33543	WordPress plugin WP Time Slots Booking Form 安全漏洞 — WP Time Slots Booking FormCWE-862	7.5	High	2024-06-09
CVE-2024-35734	WordPress plugin WP Time Slots Booking Form 跨站脚本漏洞 — WP Time Slots Booking FormCWE-79	7.1	High	2024-06-08
CVE-2024-36082	WordPress plugin Music Store 安全漏洞 — Music Store - WordPress eCommerce	7.2	-	2024-06-07
CVE-2023-48318	WordPress plugin Contact Form Email 安全漏洞 — Contact Form EmailCWE-307	5.3	Medium	2024-06-04
CVE-2023-28494	WordPress plugin Contact Form Email 安全漏洞 — Contact Form EmailCWE-862	4.3	Medium	2024-06-04
CVE-2023-28492	WordPress plugin CP Multi View Event Calendar 安全漏洞 — CP Multi View Event CalendarCWE-862	4.3	Medium	2024-06-03
CVE-2023-26523	WordPress plugin Calculated Fields Form 安全漏洞 — Calculated Fields FormCWE-862	4.3	Medium	2024-06-03
CVE-2023-26521	WordPress plugin Search in Place 安全漏洞 — Search in PlaceCWE-862	4.3	Medium	2024-06-03
CVE-2024-32720	WordPress plugin Appointment Hour Booking 安全漏洞 — Appointment Hour BookingCWE-307	5.3	Medium	2024-05-17
CVE-2024-24873	WordPress plugin CP Polls 安全漏洞 — CP PollsCWE-799	5.3	Medium	2024-05-17
CVE-2024-24874	WordPress plugin CP Polls 安全漏洞 — CP PollsCWE-80	5.3	Medium	2024-05-17
CVE-2024-31941	WordPress Plugin CP Media Player 跨站请求伪造漏洞 — CP Media PlayerCWE-352	5.4	Medium	2024-04-15
CVE-2024-31302	WordPress Plugin Contact Form Email 信息泄露漏洞 — Contact Form EmailCWE-200	5.3	Medium	2024-04-10
CVE-2024-29759	WordPress Plugin Calculated Fields Form 跨站脚本漏洞 — Calculated Fields FormCWE-79	7.1	High	2024-03-27
CVE-2023-25039	WordPress Plugin Google Maps CP 安全漏洞 — Google Maps CPCWE-862	4.3	Medium	2024-03-25
CVE-2024-2020	WordPress Plugin Calculated Fields Form 安全漏洞 — Calculated Fields FormCWE-79	7.2	High	2024-03-13
CVE-2024-0963	WordPress plugin Calculated Fields Form 安全漏洞 — Calculated Fields FormCWE-79	6.4	Medium	2024-02-02

本页汇总了 codepeople 厂商截至目前公开的全部 73 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

codepeople 厂商漏洞列表 / CVE 中文分析 73

目标达成感谢每一位支持者 — 我们达成了 100% 目标！