快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353262
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-66087 |
WordPress PropertyHive plugin <= 2.1.12 - Broken Access Control vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
Property Hive PropertyHive
|
CVE NVD | |
| CVE-2025-66086 |
WordPress SMS Alert Order Notifications plugin <= 3.8.8 - Broken Access Control vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
Cozy Vision SMS Alert Order Notifications
|
CVE NVD | |
| CVE-2025-66085 |
WordPress Arconix Shortcodes plugin <= 2.1.18 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
tychesoftwares Arconix Shortcodes
|
CVE NVD | |
| CVE-2025-66084 |
WordPress FluentCommunity plugin <= 2.0.0 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
Shahjahan Jewel FluentCommunity
|
CVE NVD | |
| CVE-2025-66083 |
WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
magepeopleteam WpEvently
|
CVE NVD | |
| CVE-2025-66082 |
WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
magepeopleteam WpEvently
|
CVE NVD | |
| CVE-2025-66081 |
WordPress Head Meta Data plugin <= 20250327 - Cross Site Scripting (XSS) vulnerability
|
MEDIUM | 5.4 | 2025-11-21 |
Jeff Starr Head Meta Data
|
CVE NVD | |
| CVE-2025-66079 |
WordPress Gutenverse Form plugin <= 2.2.0 - Broken Access Control vulnerability
|
HIGH | 7.3 | 2025-11-21 |
Jegstudio Gutenverse Form
|
CVE NVD | |
| CVE-2025-66077 |
WordPress Legal Pages plugin <= 1.4.6 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
wpWax Legal Pages
|
CVE NVD | |
| CVE-2025-66075 |
WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 4.0.3 - Broken Access Control vulnerability
|
MEDIUM | 4.2 | 2025-11-21 |
WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Consent
|
CVE NVD | |
| CVE-2025-66073 |
WordPress WP Webhooks plugin <= 3.3.8 - PHP Object Injection vulnerability
|
MEDIUM | 6.5 | 2025-11-21 |
Cozmoslabs WP Webhooks
|
CVE NVD | |
| CVE-2025-66072 |
WordPress UsersWP plugin <= 1.2.47 - Broken Access Control vulnerability
|
CRITICAL | 9.8 | 2025-11-21 |
Stiofan UsersWP
|
CVE NVD | |
| CVE-2025-66071 |
WordPress Custom Order Numbers for WooCommerce plugin <= 1.11.0 - Broken Access Control vulnerability
|
CRITICAL | 9.8 | 2025-11-21 |
tychesoftwares Custom Order Numbers for WooCommerce
|
CVE NVD | |
| CVE-2025-66069 |
WordPress PPOM for WooCommerce plugin <= 33.0.16 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
Themeisle PPOM for WooCommerce
|
CVE NVD | |
| CVE-2025-66067 |
WordPress Funnel Builder by FunnelKit plugin <= 3.13.1.2 - Cross Site Scripting (XSS) vulnerability
|
MEDIUM | 5.4 | 2025-11-21 |
FunnelKit Funnel Builder by FunnelKit
|
CVE NVD | |
| CVE-2025-66066 |
WordPress Envo Extra plugin <= 1.9.11 - Cross Site Scripting (XSS) vulnerability
|
MEDIUM | 6.1 | 2025-11-21 |
EnvoThemes Envo Extra
|
CVE NVD | |
| CVE-2025-66065 |
WordPress Gutenverse plugin <= 3.2.1 - Broken Access Control vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
Jegstudio Gutenverse
|
CVE NVD | |
| CVE-2025-66064 |
WordPress Giveaways and Contests by RafflePress plugin <= 1.12.20 - Cross Site Request Forgery (CSRF) vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
Syed Balkhi Giveaways and Contests by RafflePress
|
CVE NVD | |
| CVE-2025-66063 |
WordPress WP Google Review Slider plugin <= 17.4 - Broken Access Control vulnerability
|
MEDIUM | 5.4 | 2025-11-21 |
jgwhite33 WP Google Review Slider
|
CVE NVD | |
| CVE-2025-66062 |
WordPress WP YouTube Lyte plugin <= 1.7.28 - Open Redirection vulnerability
|
LOW | 3.7 | 2025-11-21 |
Frank Goossens WP YouTube Lyte
|
CVE NVD |