目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

HasThemes 厂商漏洞列表 / CVE 中文分析 25

HasThemes 厂商相关 25 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

HasThemes 主要提供 WordPress 主题与插件开发服务。其生态内产品历史上频繁出现远程代码执行、跨站脚本及越权访问等高危漏洞,累计收录 25 条 CVE。部分组件因缺乏严格输入验证,易被攻击者利用以获取服务器控制权。该厂商需加强代码审计与漏洞响应机制,以修复已知缺陷并提升整体安全性,避免成为攻击者的突破口。

Top products by HasThemes: ShopLentor HT Easy GA4 ( Google Analytics 4 ) HT Feed HT Mega – Absolute Addons For Elementor WC Builder WC Builder – WooCommerce Page Builder for WPBakery WP Plugin Manager Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) WP Templata Free WooCommerce Theme 99fy Extension HT Builder – WordPress Theme Builder for Elementor HT Mega Extensions For CF7 HashBar – WordPress Notification Bar Swatchly HT Menu JustTables Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) Really Simple Google Tag Manager
CVE ID标题CVSS风险等级Published
CVE-2025-68533 WordPress plugin WC Builder 安全漏洞 — WC BuilderCWE-79 6.5 Medium2025-12-24
CVE-2025-14054 WordPress plugin WC Builder 跨站脚本漏洞 — WC Builder – WooCommerce Page Builder for WPBakeryCWE-79 4.4 Medium2025-12-21
CVE-2025-64271 WordPress plugin WP Plugin Manager 安全漏洞 — WP Plugin ManagerCWE-352 4.3 Medium2025-11-13
CVE-2025-2719 WordPress plugin Swatchly 安全漏洞 — Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches)CWE-862 6.5 Medium2025-04-10
CVE-2025-26917 WordPress plugin WP Templata 跨站脚本漏洞 — WP TemplataCWE-79 7.1 High2025-03-03
CVE-2025-22801 WordPress plugin Free WooCommerce Theme 99fy Extension 跨站脚本漏洞 — Free WooCommerce Theme 99fy ExtensionCWE-79 6.5 Medium2025-01-09
CVE-2024-51682 WordPress plugin HT Builder 安全漏洞 — HT Builder – WordPress Theme Builder for ElementorCWE-79 6.5 Medium2024-11-04
CVE-2024-35699 WordPress plugin HT Feed 跨站脚本漏洞 — HT FeedCWE-79 6.5 Medium2024-06-08
CVE-2024-34767 WordPress plugin ShopLentor 安全漏洞 — ShopLentorCWE-79 6.5 Medium2024-06-03
CVE-2023-37999 WordPress plugin HT Mega 安全漏洞 — HT MegaCWE-269 9.8 Critical2024-05-17
CVE-2024-29926 WordPress Plugin WC Builder 跨站脚本漏洞 — WC BuilderCWE-79 6.5 Medium2024-03-27
CVE-2024-29094 WordPress Plugin HT Easy GA4 跨站脚本漏洞 — HT Easy GA4 ( Google Analytics 4 )CWE-79 7.1 High2024-03-19
CVE-2024-29102 WordPress Plugin Extensions For CF7 跨站脚本漏洞 — Extensions For CF7CWE-79 7.1 High2024-03-19
CVE-2023-51529 WordPress Plugin HT Mega – Absolute Addons For Elementor 跨站请求伪造漏洞 — HT Mega – Absolute Addons For ElementorCWE-352 4.3 Medium2024-02-29
CVE-2023-50901 WordPress Plugin HT Mega 跨站脚本漏洞 — HT Mega – Absolute Addons For ElementorCWE-79 7.1 High2023-12-29
CVE-2023-51372 WordPress Plugin HashBar 跨站脚本漏洞 — HashBar – WordPress Notification BarCWE-79 5.9 Medium2023-12-29
CVE-2022-47172 WordPress plugin ShopLentor 跨站请求伪造漏洞 — ShopLentorCWE-352 4.3 Medium2023-07-17
CVE-2023-23791 WordPress Plugin HT Menu – WordPress Mega Menu Builder for Elementor 跨站请求伪造漏洞 — HT MenuCWE-352 4.3 Medium2023-07-11
CVE-2023-23803 WordPress Plugin JustTables – WooCommerce Product Table 跨站请求伪造漏洞 — JustTablesCWE-352 4.3 Medium2023-07-11
CVE-2023-23792 WordPress Plugin Swatchly 跨站请求伪造漏洞 — SwatchlyCWE-352 4.3 Medium2023-07-11
CVE-2023-23804 Wordpress Plugin HT Feed 跨站请求伪造漏洞 — HT FeedCWE-352 4.3 Medium2023-07-10
CVE-2023-23802 WordPress plugin HT Easy GA4 跨站请求伪造漏洞 — HT Easy GA4 ( Google Analytics 4 )CWE-352 4.3 Medium2023-06-15
CVE-2023-23801 WordPress plugin Really Simple Google Tag Manager 跨站请求伪造漏洞 — Really Simple Google Tag ManagerCWE-352 4.3 Medium2023-04-06
CVE-2022-46798 WordPress plugin HasThemes ShopLentor 跨站请求伪造漏洞 — ShopLentorCWE-352 5.4 Medium2023-03-01
CVE-2023-23899 WordPress Plugin Extensions For CF7 跨站请求伪造漏洞 — Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection)CWE-352 4.3 Medium2023-02-17

本页汇总了 HasThemes 厂商截至目前公开的全部 25 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。