ELEXtensions 厂商漏洞列表 / CVE 中文分析 25

ELEXtensions 厂商相关 25 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

ELEXtensions 主要提供 Magento 电商平台的扩展插件与主题解决方案。其软件历史上频繁出现远程代码执行、跨站脚本及越权访问等高危漏洞，累计收录 CVE 达 25 项。这些缺陷多源于输入验证缺失或权限控制不严，易导致数据泄露或服务器被控。鉴于其广泛的市场占有率，该厂商的安全更新响应速度及代码审计机制备受业界关注，用户需及时修补已知风险以保障交易环境安全。

Top products by ELEXtensions: ELEX WordPress HelpDesk & Customer Ticketing System ELEX WooCommerce Dynamic Pricing and Discounts ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes ELEX WooCommerce Request a Quote ELEX WooCommerce Bulk Edit Products, Prices & Attributes (Basic) ELEX Product Feed for WooCommerce ReachShip WooCommerce Multi-Carrier & Conditional Shipping ELEX WooCommerce Google Shopping (Google Product Feed) WSChat – WordPress Live Chat

CVEs 25

CVE ID	标题	CVSS	风险等级	Published
CVE-2025-68837	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	6.5	Medium	2026-02-20
CVE-2025-14079	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	5.3	Medium	2026-02-05
CVE-2025-9343	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 跨站脚本漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-79	7.2	High	2025-12-21
CVE-2025-13534	WordPress plugin ELEX WordPress HelpDesk 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-269	6.3	Medium	2025-12-02
CVE-2025-10039	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-639	4.3	Medium	2025-11-21
CVE-2025-10054	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	4.3	Medium	2025-11-21
CVE-2025-11456	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 代码问题漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-434	9.8	Critical	2025-11-21
CVE-2025-12169	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	4.3	Medium	2025-11-21
CVE-2025-12085	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	4.3	Medium	2025-11-21
CVE-2025-12023	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	4.3	Medium	2025-11-21
CVE-2025-12022	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	4.3	Medium	2025-11-21
CVE-2025-12751	WordPress plugin WSChat 安全漏洞 — WSChat – WordPress Live ChatCWE-862	4.3	Medium	2025-11-19
CVE-2025-10046	WordPress plugin ELEX WooCommerce Google Shopping SQL注入漏洞 — ELEX WooCommerce Google Shopping (Google Product Feed)CWE-89	4.9	Medium	2025-09-06
CVE-2025-53213	WordPress plugin ReachShip WooCommerce Multi-Carrier和Conditional Shipping 代码问题漏洞 — ReachShip WooCommerce Multi-Carrier & Conditional ShippingCWE-434	9.9	Critical	2025-08-20
CVE-2025-47645	WordPress plugin ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes SQL注入漏洞 — ELEX WooCommerce Advanced Bulk Edit Products, Prices & AttributesCWE-89	8.5	High	2025-07-16
CVE-2025-47658	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 代码问题漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-434	9.9	Critical	2025-05-23
CVE-2025-47643	WordPress plugin ELEX Product Feed for WooCommerce SQL注入漏洞 — ELEX Product Feed for WooCommerceCWE-89	7.6	High	2025-05-07
CVE-2025-3280	WordPress plugin ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes SQL注入漏洞 — ELEX WooCommerce Bulk Edit Products, Prices & Attributes (Basic)CWE-89	6.5	Medium	2025-04-24
CVE-2025-31406	WordPress plugin ELEX WooCommerce Request a Quote 安全漏洞 — ELEX WooCommerce Request a QuoteCWE-862	4.3	Medium	2025-03-31
CVE-2024-12171	WordPress plugin ELEX WordPress HelpDesk & Customer Ticketing System 安全漏洞 — ELEX WordPress HelpDesk & Customer Ticketing SystemCWE-862	8.8	High	2025-02-01
CVE-2025-22352	WordPress plugin ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes SQL注入漏洞 — ELEX WooCommerce Advanced Bulk Edit Products, Prices & AttributesCWE-89	7.6	High	2025-01-07
CVE-2024-12266	WordPress plugin ELEX WooCommerce Dynamic Pricing and Discounts 安全漏洞 — ELEX WooCommerce Dynamic Pricing and DiscountsCWE-862	6.5	Medium	2024-12-24
CVE-2024-31364	WordPress Plugin ELEX WooCommerce Dynamic Pricing and Discounts 跨站请求伪造漏洞 — ELEX WooCommerce Dynamic Pricing and DiscountsCWE-352	4.3	Medium	2024-04-12
CVE-2024-32105	WordPress Plugin ELEX WooCommerce Dynamic Pricing and Discounts 安全漏洞 — ELEX WooCommerce Dynamic Pricing and DiscountsCWE-352	4.3	Medium	2024-04-11
CVE-2024-31255	WordPress Plugin ELEX WooCommerce Dynamic Pricing and Discounts 跨站脚本漏洞 — ELEX WooCommerce Dynamic Pricing and DiscountsCWE-79	7.1	High	2024-04-07

本页汇总了 ELEXtensions 厂商截至目前公开的全部 25 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

ELEXtensions 厂商漏洞列表 / CVE 中文分析 25

目标达成感谢每一位支持者 — 我们达成了 100% 目标！