目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

MagePeople Team 厂商漏洞列表 / CVE 中文分析 11

MagePeople Team 厂商相关 11 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

MagePeople Team 主要开发基于 WordPress 的主题和插件,为电商网站提供定制化解决方案。历史上,其产品多次暴露安全漏洞,包括跨站脚本(XSS)、权限绕过和远程代码执行(RCE)等类型。CVE 统计显示,已记录的安全问题达 11 个,主要集中在输入验证和访问控制缺陷。安全社区建议用户及时更新版本,并实施最小权限原则以降低潜在风险。

上位製品 MagePeople Team: Event Manager and Tickets Selling Plugin for WooCommerce WpTravelly Booking and Rental Manager for Bike WpBusTicketly Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin Event Manager for WooCommerce Taxi Booking Manager for WooCommerce Bus Ticket Booking with Seat Reservation
CVE IDタイトルCVSS深刻度公開日
CVE-2024-43212 WordPress WpTravelly plugin <= 1.7.7 - Broken Access Control vulnerability — WpTravellyCWE-862 7.5 High2024-11-01
CVE-2024-43985 WordPress Bus Ticket Booking with Seat Reservation plugin <= 5.3.5 - Cross Site Scripting (XSS) vulnerability — Bus Ticket Booking with Seat ReservationCWE-79 5.9 Medium2024-09-17
CVE-2024-43986 WordPress E-cab taxi booking manager plugin <=1.0.9 - Cross Site Scripting (XSS) vulnerability — Taxi Booking Manager for WooCommerceCWE-79 5.9 Medium2024-08-29
CVE-2024-43138 WordPress Event Manager and Tickets Selling Plugin for WooCommerce plugin <= 4.2.1 - Local File Inclusion vulnerability — Event Manager for WooCommerceCWE-22 6.5 Medium2024-08-13
CVE-2024-32450 WordPress WpTravelly plugin <= 1.6.0 - Cross Site Request Forgery (CSRF) vulnerability — WpTravellyCWE-352 4.3 Medium2024-04-15
CVE-2024-24796 WordPress Event Manager for WooCommerce Plugin <= 4.1.1 is vulnerable to PHP Object Injection — Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress PluginCWE-502 8.2 High2024-02-12
CVE-2023-30496 WordPress Bus Ticket Booking with Seat Reservation Plugin <= 5.2.5 is vulnerable to Cross Site Scripting (XSS) — WpBusTicketlyCWE-79 7.1 High2023-11-22
CVE-2023-36383 WordPress Event Manager for WooCommerce Plugin <= 3.9.5 is vulnerable to Cross Site Scripting (XSS) — Event Manager and Tickets Selling Plugin for WooCommerceCWE-79 5.9 Medium2023-07-18
CVE-2023-35048 WordPress Booking and Rental Manager Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) — Booking and Rental Manager for BikeCWE-79 5.9 Medium2023-06-23
CVE-2022-47164 WordPress Event Manager for WooCommerce Plugin <= 3.7.7 is vulnerable to Cross Site Request Forgery (CSRF) — Event Manager and Tickets Selling Plugin for WooCommerceCWE-352 4.3 Medium2023-05-25
CVE-2023-28422 WordPress Event Manager for WooCommerce Plugin <= 3.8.6 is vulnerable to Cross Site Scripting (XSS) — Event Manager and Tickets Selling Plugin for WooCommerceCWE-79 5.9 Medium2023-03-23

本页汇总了 MagePeople Team 厂商截至目前公开的全部 11 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。