AliYun | ZONE.CI 全球网

ZONE.CI 全球网: Begin

WordPress 实用代码

WordPress 实用代码

WordPress 插件

WordPress 插件

Web前端

WordPress 常见问题

WordPress 常见问题

Plugins

分享推荐实用的WordPress插件

WordPress

记录分享WordPress使用经验和技巧

Web前端

分享Web前端设计理念及技术

设计资源

搜刮来的设计资源

WordPress ADIF Log Search Widget plugin <= 1.0f - Reflected Cross Site Scripting (XSS) vulnerabil

WordPress ADIF Log Search Widget plugin <= 1.0f - Reflected Cross Site Scripting (XSS) vulnerabil

WordPress ADIF Log Search Widget plugin <= 1.0f - Reflected Cross Site Scripting

2024-10-1813评论

WordPress 电子邮件模板定制器适用于 WooCommerce 插件 <= 1.2.5 - 跨站点脚本 (XSS) 漏洞 (CVE-2024-49288)

WordPress 电子邮件模板定制器适用于 WooCommerce 插件 <= 1.2.5 - 跨站点脚本 (XSS) 漏洞 (CVE-2024-49288)

WordPress 电子邮件模板定制器适用于 WooCommerce 插件 <= 1.2.5 - 跨站点脚本 (XSS) 漏洞 (CVE-2024-49288)

2024-10-1819评论

ZONE.CI 全球网|安全领域涉猎者-乌云独行地带

ZONE.CI 全球网

安全领域涉猎者-乌云独行地带 .

WordPress Add Categories Post Footer plugin <= 2.2.2 - Reflected Cross Site Scripting (XSS) vulne

WordPress Add Categories Post Footer plugin <= 2.2.2 - Reflected Cross Site Scripting (XSS) vulne

WordPress Add Categories Post Footer plugin <= 2.2.2 - Reflected Cross Site Scri

2024-10-1816评论

MessagePack 允许不受信任的数据因哈希冲突和堆栈溢出而导致 DoS 攻击（CVE-2024-48924）

MessagePack 允许不受信任的数据因哈希冲突和堆栈溢出而导致 DoS 攻击（CVE-2024-48924）

MessagePack 允许不受信任的数据因哈希冲突和堆栈溢出而导致 DoS 攻击（CVE-2024-48924）CVE编号
CVE-2024-48924利用

2024-10-1833评论

WordPress AB Categories Search Widget plugin <= 0.2.5 - Reflected Cross Site Scripting (XSS) vuln

WordPress AB Categories Search Widget plugin <= 0.2.5 - Reflected Cross Site Scripting (XSS) vuln

WordPress AB Categories Search Widget plugin <= 0.2.5 - Reflected Cross Site Scr

2024-10-1818评论

SECOM WRTR-304GN-304TW-UPSC - 操作系统命令注入 (CVE-2024-10118)

SECOM WRTR-304GN-304TW-UPSC - 操作系统命令注入 (CVE-2024-10118)

SECOM WRTR-304GN-304TW-UPSC - 操作系统命令注入 (CVE-2024-10118)CVE编号
CVE-2024-10118利用情况

2024-10-1838评论

WordPress Tito plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability (CVE-2024-49241)

WordPress Tito plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability (CVE-2024-49241)

WordPress Tito plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability (CVE-202

2024-10-1825评论

ZONE.CI 全球网|安全领域涉猎者-乌云独行地带

ZONE.CI 全球网

安全领域涉猎者-乌云独行地带 .

WordPress Dynamic Elementor Addons plugin <= 1.0.0 - Local File Inclusion vulnerability (CVE-2024

WordPress Dynamic Elementor Addons plugin <= 1.0.0 - Local File Inclusion vulnerability (CVE-2024

WordPress Dynamic Elementor Addons plugin <= 1.0.0 - Local File Inclusion vulner

2024-10-1817评论

Grafana SQL 表达式允许远程代码执行（CVE-2024-9264）

Grafana SQL 表达式允许远程代码执行（CVE-2024-9264）

Grafana SQL 表达式允许远程代码执行（CVE-2024-9264）CVE编号
CVE-2024-9264利用情况
暂无补丁情况 N/A披露时间 2

2024-10-1855评论

Advanced Category and Custom Taxonomy Image <= 1.0.9 - Authenticated (Contributor+) Stored Cross-

Advanced Category and Custom Taxonomy Image <= 1.0.9 - Authenticated (Contributor+) Stored Cross-

Advanced Category and Custom Taxonomy Image <= 1.0.9 - Authenticated (Contributo

2024-10-1820评论

Flat UI Button <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via flatbtn Shor

Flat UI Button <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via flatbtn Shor

Flat UI Button <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

2024-10-1816评论

Infinite-Scroll <= 2.6.2 - Cross-Site Request Forgery to Plugin Settings Update (CVE-2024-10040)

Infinite-Scroll <= 2.6.2 - Cross-Site Request Forgery to Plugin Settings Update (CVE-2024-10040)

Infinite-Scroll <= 2.6.2 - Cross-Site Request Forgery to Plugin Settings Update

2024-10-1830评论

ZONE.CI 全球网|安全领域涉猎者-乌云独行地带

ZONE.CI 全球网

安全领域涉猎者-乌云独行地带 .

WordPress Movie Database plugin <= 1.0.11 - Cross Site Scripting (XSS) vulnerability (CVE-2024-43

WordPress Movie Database plugin <= 1.0.11 - Cross Site Scripting (XSS) vulnerability (CVE-2024-43

WordPress Movie Database plugin <= 1.0.11 - Cross Site Scripting (XSS) vulnerabi

2024-10-1832评论

Debrandify · Remove or Replace WordPress Branding <= 1.1.2 - Authenticated (Author+) Stored Cross

Debrandify · Remove or Replace WordPress Branding <= 1.1.2 - Authenticated (Author+) Stored Cross

Debrandify · Remove or Replace WordPress Branding <= 1.1.2 - Authenticated (Auth

2024-10-1817评论

Edit WooCommerce Templates <= 1.1.2 - Reflected Cross-Site Scripting via page (CVE-2024-10049)

Edit WooCommerce Templates <= 1.1.2 - Reflected Cross-Site Scripting via page (CVE-2024-10049)

Edit WooCommerce Templates <= 1.1.2 - Reflected Cross-Site Scripting via page (C

2024-10-1822评论

GetResponse Forms by Optin Cat <= 2.5.6 - Reflected Cross-Site Scripting (CVE-2024-8740)

GetResponse Forms by Optin Cat <= 2.5.6 - Reflected Cross-Site Scripting (CVE-2024-8740)

GetResponse Forms by Optin Cat <= 2.5.6 - Reflected Cross-Site Scripting (CVE-20

2024-10-1830评论

SECOM WRTM326 - OS Command Injection (CVE-2024-10119)

SECOM WRTM326 - OS Command Injection (CVE-2024-10119)

SECOM WRTM326 - OS Command Injection (CVE-2024-10119)CVE编号
CVE-2024-10119利用情况

2024-10-1817评论

ZONE.CI 全球网|安全领域涉猎者-乌云独行地带

ZONE.CI 全球网

安全领域涉猎者-乌云独行地带 .

Social Share With Floating Bar <= 1.0.3 - Reflected Cross-Site Scripting (CVE-2024-8790)

Social Share With Floating Bar <= 1.0.3 - Reflected Cross-Site Scripting (CVE-2024-8790)

Social Share With Floating Bar <= 1.0.3 - Reflected Cross-Site Scripting (CVE-20

2024-10-1833评论

Suki Sites Import <= 1.2.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upl

Suki Sites Import <= 1.2.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upl

Suki Sites Import <= 1.2.1 - Authenticated (Author+) Stored Cross-Site Scripting

2024-10-1823评论

DPD Baltic Shipping <= 1.2.83 - Reflected Cross-Site Scripting (CVE-2024-9350)

DPD Baltic Shipping <= 1.2.83 - Reflected Cross-Site Scripting (CVE-2024-9350)

DPD Baltic Shipping <= 1.2.83 - Reflected Cross-Site Scripting (CVE-2024-9350)CV

2024-10-1821评论

Bulk images optimizer: Resize, optimize, convert to webp, rename ... <= 2.0.1 - Missing Authoriza

Bulk images optimizer: Resize, optimize, convert to webp, rename ... <= 2.0.1 - Missing Authoriza

Bulk images optimizer: Resize, optimize, convert to webp, rename ... <= 2.0.1 -

2024-10-1813评论

SendGrid for WordPress <= 1.4 - Missing Authorization to Authenticated (Subscriber+) Log Deletion

SendGrid for WordPress <= 1.4 - Missing Authorization to Authenticated (Subscriber+) Log Deletion

SendGrid for WordPress <= 1.4 - Missing Authorization to Authenticated (Subscrib

2024-10-1816评论

ZONE.CI 全球网|安全领域涉猎者-乌云独行地带

ZONE.CI 全球网

安全领域涉猎者-乌云独行地带 .

Easy Menu Manager | WPZest <= 1.0.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG

Easy Menu Manager | WPZest <= 1.0.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG

Easy Menu Manager | WPZest <= 1.0.1 - Authenticated (Author+) Stored Cross-Site

2024-10-1824评论

Elemenda <= 0.0.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload (CVE-

Elemenda <= 0.0.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload (CVE-

Elemenda <= 0.0.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG

2024-10-1828评论

Gantry 4 Framework <= 4.1.21 - Reflected Cross-Site Scripting (CVE-2024-9382)

Gantry 4 Framework <= 4.1.21 - Reflected Cross-Site Scripting (CVE-2024-9382)

Gantry 4 Framework <= 4.1.21 - Reflected Cross-Site Scripting (CVE-2024-9382)CVE

2024-10-1822评论

目录

ZONE.CI 全球网

安全领域涉猎者-乌云独行地带
ZONE.CI 全球网公众号