关键漏洞信息 漏洞描述 CVE编号: CVE-2024-13694 CVSS评分: 7.5 (High) CVSS向量: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 漏洞类型: Improper Authorization 公开发布日期: January 29, 2025 最后更新日期: January 30, 2025 研究者: Tim Coen 影响的软件 软件名称: MoreConvert Wishlist for WooCommerce 受影响版本: <= 1.8.7 已修复版本: 1.8.8 修复措施: 更新至版本1.8.8或更新版本 其他相关漏洞 1. CVE-2025-47487: MC Woocommerce Wishlist <= 1.9.1 - Reflected Cross-Site Scripting (CVSS: 6.1) 2. CVE-2025-30879: MC Woocommerce Wishlist <= 1.8.9 - Authenticated (Administrator+) SQL Injection (CVSS: 4.9) 3. CVE-2024-34813: MC Woocommerce Wishlist <= 1.7.8 - Missing Authorization (CVSS: 5.3) 4. CVE-2024-34819: MC Woocommerce Wishlist <= 1.7.2 - Missing Authorization (CVSS: 5.3) 5. CVE-2023-12345: MC Woocommerce Wishlist <= 1.5.4 - Cross-Site Request Forgery (CVSS: 4.3) 其他信息 获取更多漏洞信息: 点击此处 联系支持: wf-support@wordfence.com