目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

Team Heateor 厂商漏洞列表 / CVE 中文分析 8

Team Heateor 厂商相关 8 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

Team Heateor 主要开发 WordPress 插件,专注于网站功能增强。其产品历史上曾出现多种漏洞类型,包括跨站脚本(XSS)、远程代码执行(RCE)和权限绕过等安全风险。截至最新统计,该厂商相关项目已记录 8 条 CVE 漏洞,主要集中在输入验证不足和权限控制缺陷方面。安全社区建议用户及时更新插件版本,并定期进行安全审计以防范潜在威胁。

上位製品 Team Heateor: Fancy Comments WordPress Super Socializer Heateor Social Login WordPress Social Comments Plugin for Vkontakte Comments and Disqus Comments Heateor Social Login WordPress
CVE IDタイトルCVSS深刻度公開日
CVE-2023-41802 WordPress Super Socializer plugin <= 7.13.54 - Broken Access Control vulnerability — Super SocializerCWE-862 4.3 Medium2024-12-13
CVE-2024-35706 WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability — Heateor Social LoginCWE-79 7.1 High2024-06-08
CVE-2024-35707 WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability — Heateor Social LoginCWE-79 6.5 Medium2024-06-08
CVE-2024-29804 WordPress Fancy Comments WordPress plugin <= 1.2.14 - Cross Site Scripting (XSS) vulnerability — Fancy Comments WordPressCWE-79 6.5 Medium2024-03-27
CVE-2024-24712 WordPress Heateor Social Login Plugin <= 1.1.30 is vulnerable to Cross Site Scripting (XSS) — Heateor Social Login WordPressCWE-79 6.5 Medium2024-02-10
CVE-2023-35882 WordPress Super Socializer Plugin <= 7.13.52 is vulnerable to Cross Site Scripting (XSS) — Super SocializerCWE-79 6.5 Medium2023-06-20
CVE-2023-23977 WordPress Heateor Social Comments Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS) — WordPress Social Comments Plugin for Vkontakte Comments and Disqus CommentsCWE-79 6.5 Medium2023-04-04
CVE-2023-23670 WordPress Fancy Comments WordPress Plugin <= 1.2.10 is vulnerable to Cross Site Scripting (XSS) — Fancy Comments WordPressCWE-79 6.5 Medium2023-03-30

本页汇总了 Team Heateor 厂商截至目前公开的全部 8 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。