A WP Life 厂商漏洞列表 / CVE 中文分析 19

A WP Life 厂商相关 19 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

A WP Life 是专注于 WordPress 生态系统的安全研究项目，主要致力于发现和披露 WordPress 主题、插件及相关产品的安全漏洞。历史漏洞分析显示，其收录的 CVE 主要涉及远程代码执行、跨站脚本和权限绕过等类型。该项目通过系统性漏洞挖掘，为 WordPress 生态提供了重要的安全参考，其披露的漏洞多与不当输入验证和权限控制缺陷相关，对 WordPress 网站安全管理具有实际指导意义。

Top products by A WP Life: Contact Form Widget Album Gallery – WordPress Gallery Slider Responsive Slideshow – Image slider, Gallery slideshow Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery Blog Filter Event Monster – Event Management, Tickets Booking, Upcoming Event Video Gallery – Api Gallery, YouTube and Vimeo, Link Gallery Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow Event Management Tickets Booking Right Click Disable OR Ban Login Page Customizer – Customizer Login Page, Admin Page, Custom Design Modal Popup Box

CVEs 19

CVE ID	标题	CVSS	风险等级	Published
CVE-2026-39517	WordPress plugin Blog Filter 跨站脚本漏洞 — Blog FilterCWE-79	6.5	Medium	2026-04-08
CVE-2026-22346	WordPress plugin Slider Responsive Slideshow – Image slider, Gallery slideshow 代码问题漏洞 — Slider Responsive Slideshow – Image slider, Gallery slideshowCWE-502	8.8	High	2026-02-20
CVE-2026-22345	WordPress plugin Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery 代码问题漏洞 — Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry GalleryCWE-502	8.8	High	2026-02-20
CVE-2025-68526	WordPress plugin Modal Popup Box 代码问题漏洞 — Modal Popup BoxCWE-502	8.8	High	2026-02-20
CVE-2025-62134	WordPress plugin Contact Form Widget 跨站请求伪造漏洞 — Contact Form WidgetCWE-352	5.4	Medium	2025-12-31
CVE-2025-69033	WordPress plugin Blog Filter 跨站脚本漏洞 — Blog FilterCWE-79	6.5	Medium	2025-12-30
CVE-2025-49902	WordPress plugin Login Page Customizer – Customizer Login Page, Admin Page, Custom Design 安全漏洞 — Login Page Customizer – Customizer Login Page, Admin Page, Custom DesignCWE-862	6.5	Medium	2025-12-18
CVE-2025-47491	WordPress plugin Contact Form Widget 跨站请求伪造漏洞 — Contact Form WidgetCWE-352	7.4	High	2025-05-07
CVE-2025-39548	WordPress plugin Right Click Disable OR Ban 跨站请求伪造漏洞 — Right Click Disable OR BanCWE-352	7.1	High	2025-04-16
CVE-2024-48037	WordPress plugin Contact Form Widget 跨站请求伪造漏洞 — Contact Form WidgetCWE-352	5.4	Medium	2024-10-17
CVE-2024-5059	WordPress plugin Event Management Tickets Booking 安全漏洞 — Event Management Tickets BookingCWE-200	5.3	Medium	2024-06-21
CVE-2024-35717	WordPress plugin Media Slider 安全漏洞 — Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal SlideshowCWE-862	4.3	Medium	2024-06-10
CVE-2024-35720	WordPress plugin Album Gallery 安全漏洞 — Album Gallery – WordPress GalleryCWE-862	4.3	Medium	2024-06-10
CVE-2024-35721	WordPress plugin Image Gallery 安全漏洞 — Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry GalleryCWE-862	4.3	Medium	2024-06-10
CVE-2024-35722	WordPress plugin Slider Responsive Slideshow 安全漏洞 — Slider Responsive Slideshow – Image slider, Gallery slideshowCWE-862	4.3	Medium	2024-06-10
CVE-2024-34754	WordPress plugin Contact Form Widget 安全漏洞 — Contact Form WidgetCWE-200	5.3	Medium	2024-06-03
CVE-2024-34377	WordPress plugin Video Gallery 安全漏洞 — Video Gallery – Api Gallery, YouTube and Vimeo, Link GalleryCWE-862	4.3	Medium	2024-05-06
CVE-2023-47525	WordPress plugin Event Management Tickets Booking 跨站脚本漏洞 — Event Monster – Event Management, Tickets Booking, Upcoming EventCWE-79	5.9	Medium	2023-12-21
CVE-2023-23646	WordPress Plugin Life Album Gallery 跨站请求伪造漏洞 — Album Gallery – WordPress GalleryCWE-352	4.3	Medium	2023-07-17

本页汇总了 A WP Life 厂商截至目前公开的全部 19 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

A WP Life 厂商漏洞列表 / CVE 中文分析 19

目标达成感谢每一位支持者 — 我们达成了 100% 目标！