Ninja Team 厂商漏洞列表 / CVE 中文分析 16

Ninja Team 厂商相关 16 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

Ninja Team 是一家专注于网络安全研究的技术团队，主要提供漏洞挖掘和渗透测试服务。历史上，其产品或项目常见漏洞类型包括远程代码执行(RCE)、跨站脚本攻击(XSS)和权限绕过等安全缺陷。该团队曾因发现多个高危漏洞而受到业界关注，其研究成果对提升产品安全性具有参考价值。截至最新统计，该团队已累计披露16条CVE记录，反映了其在安全研究领域的活跃度。

上位製品 Ninja Team: Filebird GDPR CCPA Compliance Support Click to Chat – WP Support All-in-One Floating Widget FileBird – WordPress Media Library Folders & File Manager FastDup – Fastest WordPress Migration & Duplicator FileBird Document Library Ninja Beaver Add-ons for Beaver Builder Multi Step for Contact Form Notibar File Manager Pro

CVEs 16

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2025-68073	WordPress GDPR CCPA Compliance Support plugin <= 2.7.4 - Broken Access Control vulnerability — GDPR CCPA Compliance SupportCWE-862	6.5	Medium	2026-01-22
CVE-2025-52710	WordPress File Manager Pro plugin <= 1.8.8 - Cross Site Scripting (XSS) Vulnerability — File Manager ProCWE-79	5.9	Medium	2025-06-20
CVE-2025-48260	WordPress GDPR CCPA Compliance Support plugin <= 2.7.3 - Broken Access Control Vulnerability — GDPR CCPA Compliance SupportCWE-862	4.3	Medium	2025-05-19
CVE-2025-31092	WordPress Click to Chat – WP Support All-in-One Floating Widget plugin <= 2.3.4 - Cross Site Scripting (XSS) vulnerability — Click to Chat – WP Support All-in-One Floating WidgetCWE-79	6.5	Medium	2025-03-27
CVE-2025-26977	WordPress FileBird plugin <= 6.4.2.1 - Insecure Direct Object References (IDOR) vulnerability — FilebirdCWE-639	3.8	Low	2025-02-25
CVE-2025-24591	WordPress GDPR CCPA Compliance & Cookie Consent Banner plugin <= 2.7.1 - Broken Access Control vulnerability — GDPR CCPA Compliance SupportCWE-862	4.3	Medium	2025-01-24
CVE-2024-54269	WordPress Notibar plugin <= 2.1.4 - Broken Access Control vulnerability — NotibarCWE-862	4.3	Medium	2024-12-11
CVE-2023-25966	WordPress FileBird plugin <= 5.1.4 - Broken Access Control vulnerability — FilebirdCWE-862	5.5	Medium	2024-12-09
CVE-2024-53825	WordPress FileBird Lite plugin <= 6.3.2 - Broken Access Control vulnerability — FilebirdCWE-862	4.7	Medium	2024-12-06
CVE-2024-49281	WordPress Click to Chat – WP Support All-in-One Floating Widget plugin <= 2.3.3 - Cross Site Scripting (XSS) vulnerability — Click to Chat – WP Support All-in-One Floating WidgetCWE-78	6.5	Medium	2024-10-17
CVE-2024-47331	WordPress Multi Step for Contact Form plugin <= 2.7.7 - Unauthenticated SQL Injection vulnerability — Multi Step for Contact FormCWE-89	9.3	Critical	2024-10-11
CVE-2024-37244	WordPress Ninja Beaver Add-ons for Beaver Builder plugin <= 2.4.5 - Cross Site Scripting (XSS) vulnerability — Ninja Beaver Add-ons for Beaver BuilderCWE-79	6.5	Medium	2024-07-22
CVE-2024-37504	WordPress FileBird Document Library plugin <= 2.0.6 - Sensitive Data Exposure vulnerability — FileBird Document LibraryCWE-200	5.3	Medium	2024-07-10
CVE-2024-35166	WordPress FileBird – WordPress Media Library Folders & File Manager plugin <= 5.6.3 - Sensitive Data Exposure vulnerability — FilebirdCWE-200	5.3	Medium	2024-05-13
CVE-2023-51406	WordPress FastDup Plugin <= 2.1.7 is vulnerable to Sensitive Data Exposure — FastDup – Fastest WordPress Migration & DuplicatorCWE-200	5.3	Medium	2024-01-08
CVE-2021-24385	Filebird 4.7.3 - Unauthenticated SQL Injection — FileBird – WordPress Media Library Folders & File ManagerCWE-89	9.8	-	2021-07-12

本页汇总了 Ninja Team 厂商截至目前公开的全部 16 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目標達成 すべての支援者に感謝 — 100%達成しました！

Ninja Team 厂商漏洞列表 / CVE 中文分析 16

目標達成すべての支援者に感謝 — 100%達成しました！