smub 厂商相关 84 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。
smub 主要涉及软件供应链安全领域,旨在识别和缓解开源组件风险。其收录的 75 条 CVE 多集中于远程代码执行、跨站脚本及权限绕过等高危类型,反映出组件在输入验证与访问控制方面的普遍缺陷。值得关注的是,该项目通过持续追踪漏洞数据,为开发者提供了关键的风险预警机制,有助于在集成第三方库前评估潜在威胁,提升整体系统的安全性。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2026-7526 | WordPress plugin PDF Embedder 信息泄露漏洞 — PDF EmbedderCWE-200 | 4.3 | Medium | 2026-05-28 |
| CVE-2026-7533 | WordPress plugin Easy Digital Downloads 跨站请求伪造漏洞 — Easy Digital Downloads – eCommerce Payments and Subscriptions made easyCWE-352 | 4.3 | Medium | 2026-05-28 |
| CVE-2026-8832 | WordPress plugin WPCode 代码注入漏洞 — WPCode – Insert Headers and Footers + Custom Code Snippets – WordPress Code ManagerCWE-94 | 8.8 | High | 2026-05-27 |
| CVE-2026-7636 | WordPress plugin Slider by Soliloquy 信息泄露漏洞 — Slider by Soliloquy – Responsive Image Slider for WordPressCWE-200 | 4.3 | Medium | 2026-05-22 |
| CVE-2026-6566 | WordPress plugin NextGEN Gallery 安全漏洞 — Photo Gallery, Sliders, Proofing and Themes – NextGEN GalleryCWE-639 | 4.3 | Medium | 2026-05-20 |
| CVE-2026-5075 | WordPress plugin All in One SEO 信息泄露漏洞 — All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase TrafficCWE-200 | 4.3 | Medium | 2026-05-20 |
| CVE-2026-5361 | WordPress plugin Envira Gallery Lite 跨站脚本漏洞 — Envira Gallery – Image Photo Gallery, Albums, Video Gallery, Slideshows & MoreCWE-79 | 6.4 | Medium | 2026-05-14 |
| CVE-2026-6177 | WordPress plugin Custom Twitter Feeds 跨站脚本漏洞 — Custom Twitter Feeds – A Tweets Widget or X Feed WidgetCWE-79 | 7.2 | High | 2026-05-13 |
| CVE-2026-7619 | WordPress plugin Charitable SQL注入漏洞 — Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & MoreCWE-89 | 6.5 | Medium | 2026-05-13 |
| CVE-2026-5488 | WordPress plugin ExactMetrics 安全漏洞 — ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin)CWE-862 | 5.3 | Medium | 2026-04-24 |
| CVE-2026-5464 | WordPress plugin ExactMetrics 安全漏洞 — ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin)CWE-862 | 7.2 | High | 2026-04-23 |
| CVE-2026-3177 | WordPress plugin Charitable 数据伪造问题漏洞 — Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & MoreCWE-345 | 5.3 | Medium | 2026-04-07 |
| CVE-2026-1463 | WordPress plugin NextGEN Gallery 安全漏洞 — Photo Gallery, Sliders, Proofing and Themes – NextGEN GalleryCWE-98 | 8.8 | High | 2026-03-18 |
| CVE-2026-1992 | WordPress plugin ExactMetrics – Google Analytics Dashboard for WordPress 安全漏洞 — ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin)CWE-639 | 8.8 | High | 2026-03-11 |
| CVE-2026-1993 | WordPress plugin ExactMetrics – Google Analytics Dashboard for WordPress 安全漏洞 — ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin)CWE-269 | 8.8 | High | 2026-03-11 |
| CVE-2026-1236 | WordPress plugin Envira Gallery 跨站脚本漏洞 — Envira Gallery – Image Photo Gallery, Albums, Video Gallery, Slideshows & MoreCWE-79 | 6.4 | Medium | 2026-03-04 |
| CVE-2026-2471 | WordPress plugin WP Mail Logging 代码问题漏洞 — WP Mail LoggingCWE-502 | 7.5 | High | 2026-02-28 |
| CVE-2025-14384 | WordPress plugin All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic 安全漏洞 — All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase TrafficCWE-862 | 4.3 | Medium | 2026-01-16 |
| CVE-2025-14783 | WordPress plugin Easy Digital Downloads 授权问题漏洞 — Easy Digital Downloads – eCommerce Payments and Subscriptions made easyCWE-640 | 4.3 | Medium | 2025-12-31 |
| CVE-2025-13641 | WordPress plugin NextGEN Gallery 安全漏洞 — Photo Gallery, Sliders, Proofing and Themes – NextGEN GalleryCWE-98 | 8.8 | High | 2025-12-18 |
| CVE-2025-12484 | WordPress plugin Giveaways and Contests by RafflePress 跨站脚本漏洞 — Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and Social FollowersCWE-79 | 7.2 | High | 2025-11-19 |
| CVE-2025-12847 | WordPress plugin All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic 安全漏洞 — All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase TrafficCWE-862 | 4.3 | Medium | 2025-11-15 |
| CVE-2025-12377 | WordPress plugin Gallery Plugin for WordPress – Envira Photo Gallery 安全漏洞 — Envira Gallery – Image Photo Gallery, Albums, Video Gallery, Slideshows & MoreCWE-862 | 4.3 | Medium | 2025-11-13 |
| CVE-2025-11448 | WordPress plugin Envira Photo Gallery 安全漏洞 — Envira Gallery – Image Photo Gallery, Albums, Video Gallery, Slideshows & MoreCWE-862 | 4.3 | Medium | 2025-11-08 |
| CVE-2025-12837 | WordPress plugin aThemes Addons for Elementor 跨站脚本漏洞 — aThemes Addons for ElementorCWE-79 | 6.4 | Medium | 2025-11-08 |
| CVE-2025-11271 | WordPress plugin Easy Digital Downloads 安全漏洞 — Easy Digital Downloads – eCommerce Payments and Subscriptions made easyCWE-807 | 5.3 | Medium | 2025-11-06 |
| CVE-2025-11893 | WordPress plugin Charitable 安全漏洞 — Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & MoreCWE-89 | 6.5 | Medium | 2025-10-25 |
| CVE-2025-10694 | WordPress plugin User Feedback 安全漏洞 — UserFeedback – Create Interactive Feedback Form, User Surveys, and Polls in SecondsCWE-862 | 5.3 | Medium | 2025-10-25 |
| CVE-2025-8149 | WordPress plugin aThemes Addons for Elementor 跨站脚本漏洞 — aThemes Addons for ElementorCWE-79 | 6.4 | Medium | 2025-09-06 |
| CVE-2025-8102 | WordPress plugin Easy Digital Downloads 跨站请求伪造漏洞 — Easy Digital Downloads – eCommerce Payments and Subscriptions made easyCWE-352 | 5.4 | Medium | 2025-08-20 |
本页汇总了 smub 厂商截至目前公开的全部 84 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。