目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

8theme 厂商漏洞列表 / CVE 中文分析 25

8theme 厂商相关 25 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

8theme 是一家专注于 WordPress 主题与插件开发的商业厂商,其核心产品为各类企业级网站模板。历史安全数据显示,该厂商已收录 25 条 CVE,主要漏洞类型集中在跨站脚本(XSS)、任意文件读取及未授权访问等常见 Web 风险。其部分插件因缺乏严格的输入验证导致权限绕过问题频发。建议用户及时更新组件以修补已知缺陷,并遵循最小权限原则部署相关服务,以降低潜在的攻击面。

13 件の結果 / 25フィルターをクリア
上位製品 8theme: XStore XStore Core
CVE IDタイトルCVSS深刻度公開日
CVE-2026-25305 WordPress XStore theme <= 9.6.4 - Cross Site Scripting (XSS) vulnerability — XStoreCWE-79 6.5 Medium2026-02-19
CVE-2026-25006 WordPress XStore theme <= 9.6.4 - Arbitrary Shortcode Execution vulnerability — XStoreCWE-80 5.3 Medium2026-02-19
CVE-2025-64193 WordPress XStore theme < 9.6.1 - Local File Inclusion vulnerability — XStoreCWE-98 7.5 High2025-12-18
CVE-2025-64192 WordPress XStore theme < 9.6 - Broken Access Control vulnerability — XStoreCWE-862 6.3 Medium2025-12-18
CVE-2025-64191 WordPress XStore theme < 9.6.1 - Cross Site Scripting (XSS) vulnerability — XStoreCWE-79 7.1 High2025-12-18
CVE-2025-11746 XStore | Multipurpose WooCommerce Theme <= 9.5.4 - Authenticated (Subscriber+) Local File Inclusion — XStoreCWE-22 8.8 High2025-10-15
CVE-2025-60100 WordPress XStore theme < 9.6 - Content Injection vulnerability — XStoreCWE-80 5.3 Medium2025-09-26
CVE-2024-33561 WordPress XStore theme <= 9.3.8 - Unauthenticated Broken Access Control vulnerability — XStoreCWE-862 7.5 High2024-06-09
CVE-2024-33563 WordPress XStore theme <= 9.3.8 - Broken Access Control vulnerability — XStoreCWE-862 7.6 High2024-06-09
CVE-2024-33564 WordPress XStore theme <= 9.3.8 - Arbitrary Option Update vulnerability — XStoreCWE-862 8.8 High2024-06-09
CVE-2024-33560 WordPress XStore theme <= 9.3.8 - Unauthenticated Local File Inclusion vulnerability — XStoreCWE-22 9.0 Critical2024-06-04
CVE-2024-33559 WordPress XStore theme <= 9.3.5 - Unauthenticated SQL Injection vulnerability — XStoreCWE-89 9.3 Critical2024-04-29
CVE-2024-33562 WordPress XStore theme <= 9.3.5 - Reflected Cross Site Scripting (XSS) vulnerability — XStoreCWE-79 7.1 High2024-04-29

本页汇总了 8theme 厂商截至目前公开的全部 25 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。