WordPress plugin 漏洞列表
共找到 47 个与 WordPress plugin 相关的漏洞
- POC 2025-12-12wp-woocommerce-admin-fpd: WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure
- POC 2025-11-11CVE-2025-4302: Stop User Enumeration WordPress plugin - Authentication Bypass
- 2025-10-14WordPress plugin WP JobHunt 跨站脚本漏洞
- 2025-09-19Wordpress Plugin Ultimate Auction Pro /wp-admin/admin-ajax.php uwa_see_more_bids_ajax SQL 注入漏洞 (CVE-2025-4204)
- 2025-09-02WordPress plugin Events Addon for Elementor 跨站脚本漏洞
- 2025-09-02WordPress plugin Related Posts Lite 跨站请求伪造漏洞
- 2025-09-02WordPress plugin TablePress 跨站脚本漏洞
- 2025-09-02WordPress plugin Ocean Extra 跨站脚本漏洞
- 2025-09-01CVE-2019-19985: WordPress Plugin Email Subscribers & Newsletters 4.2.2 - Unauthenticated File Download
- 2025-08-21WordPress Plugin email-subscribers /wp-admin/admin-post.php advanced_filter SQL 注入漏洞(CVE-2024-2876)
- POC 2025-08-01CVE-2011-5106: WordPress Plugin Flexible Custom Post Type < 0.1.7 - Cross-Site Scripting
- POC 2025-08-01CVE-2012-1835: WordPress Plugin All-in-One Event Calendar 1.4 - Cross-Site Scripting
- POC 2025-08-01CVE-2012-4242: WordPress Plugin MF Gig Calendar 0.9.2 - Cross-Site Scripting
- POC 2025-08-01CVE-2012-6499: WordPress Plugin Age Verification v0.4 - Open Redirect
- POC 2025-08-01CVE-2013-2287: WordPress Plugin Uploader 1.0.4 - Cross-Site Scripting
- POC 2025-08-01CVE-2013-4117: WordPress Plugin Category Grid View Gallery 2.3.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2013-4625: WordPress Plugin Duplicator < 0.4.5 - Cross-Site Scripting
- POC 2025-08-01CVE-2014-4940: WordPress Plugin Tera Charts - Local File Inclusion
- POC 2025-08-01CVE-2014-5368: WordPress Plugin WP Content Source Control - Directory Traversal
- POC 2025-08-01CVE-2014-8799: WordPress Plugin DukaPress 2.5.2 - Directory Traversal
- POC 2025-08-01CVE-2015-4455: WordPress Plugin Aviary Image Editor Addon For Gravity Forms 3.0 Beta - Arbitrary File Upload
- POC 2025-08-01CVE-2016-10973: Brafton WordPress Plugin < 3.4.8 - Cross-Site Scripting
- POC 2025-08-01CVE-2020-24312: WordPress Plugin File Manager (wp-file-manager) Backup Disclosure
- POC 2025-08-01CVE-2020-36728: WordPress Plugin Adning Advertising < 1.5.6 - Arbitrary File Upload
- POC 2025-08-01CVE-2020-8615: Wordpress Plugin Tutor LMS 1.5.3 - Cross-Site Request Forgery
- POC 2025-08-01CVE-2021-24215: Controlled Admin Access WordPress Plugin <= 1.4.0 - Improper Access Control & Privilege Escalation
- POC 2025-08-01CVE-2021-24286: WordPress Plugin Redirect 404 to Parent 1.3.0 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-24991: WooCommerce PDF Invoices & Packing Slips WordPress Plugin < 2.10.5 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-25008: The Code Snippets WordPress Plugin < 2.14.3 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-25085: WOOF WordPress plugin - Cross-Site Scripting
- POC 2025-08-01CVE-2021-39350: FV Flowplayer Video Player WordPress plugin - Authenticated Cross-Site Scripting
- POC 2025-08-01CVE-2022-0149: WooCommerce Stored Exporter WordPress Plugin < 2.7.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-0208: WordPress Plugin MapPress <2.73.4 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-0651: WordPress Plugin WP Statistics <= 13.1.5 - SQL Injection
- POC 2025-08-01CVE-2022-25148: WordPress Plugin WP Statistics <= 13.1.5 - SQL Injection
- POC 2025-08-01CVE-2023-2624: KiviCare WordPress Plugin - Cross-Site Scripting
- POC 2025-08-01CVE-2023-4596: WordPress Plugin Forminator 1.24.6 - Arbitrary File Upload
- POC 2025-08-01CVE-2024-10783: WordPress Plugin MainWP Child - Authentication Bypass
- POC 2025-08-01CVE-2024-1512: MasterStudy LMS WordPress Plugin <= 3.2.5 - SQL Injection
- POC 2025-08-01CVE-2024-2879: WordPress Plugin LayerSlider 7.9.11-7.10.0 - SQL Injection
- POC 2025-08-01seatreg-redirect: WordPress Plugin ‘SeatReg’ - Open Redirect
- POC 2025-08-01wp-email-subscribers-listing: WordPress Plugin Email Subscribers Listing
- POC 2025-08-01wp-gallery-file-upload: WordPress Plugin Gallery 3.06 - Arbitrary File Upload
- POC 2025-08-01wp-googlemp3-lfi: WordPress Plugin CodeArt Google MP3 Player - File Disclosure Download
- POC 2025-08-01wpml-xss: WordPress Plugin WPML Version < 4.6.1 Cross-Site Scripting
- 2025-04-30WordPress Plugin Suretriggers /wp-json/sure-triggers/v1/automation/action 未授权访问漏洞(CVE-2025-3102)
- 2025-04-01WordPress Plugin R+L Carrier Edition /wp-admin/admin-ajax.php SQL 注入漏洞(CVE-2024-13481)