WPEverest 厂商相关 47 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。
WPEverest 主要提供 WordPress 建站插件及主题服务,其核心用途在于简化网站搭建流程。截至最新统计,该项目已收录 47 条 CVE,历史漏洞多集中于远程代码执行、跨站脚本及权限绕过等高危类型。部分组件因缺乏严格输入验证导致安全风险累积,引发多次大规模利用。建议用户及时更新组件以修复已知缺陷,并遵循最小权限原则配置环境,降低潜在攻击面。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-3422 | WordPress plugin Everest Forms 代码注入漏洞 — Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form BuilderCWE-94 | 5.4 | Medium | 2025-04-11 |
| CVE-2025-3439 | WordPress plugin Everest Forms 代码问题漏洞 — Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form BuilderCWE-502 | 9.8 | Critical | 2025-04-11 |
| CVE-2025-30899 | WordPress plugin User Registration 跨站脚本漏洞 — User RegistrationCWE-79 | 5.9 | Medium | 2025-03-27 |
| CVE-2025-1511 | WordPress plugin User Registration & Membership – Custom Registration Form, Login Form, and User Profile 跨站脚本漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-79 | 6.1 | Medium | 2025-02-28 |
| CVE-2025-1128 | WordPress plugin Everest Forms 代码问题漏洞 — Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form BuilderCWE-434 | 9.8 | Critical | 2025-02-25 |
| CVE-2023-29429 | WordPress plugin User Registration 安全漏洞 — User RegistrationCWE-862 | 5.3 | Medium | 2024-12-09 |
| CVE-2023-51377 | WordPress plugin Everest Forms 安全漏洞 — Everest FormsCWE-862 | 5.3 | Medium | 2024-06-14 |
| CVE-2024-4958 | WordPress plugin User Registration 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-862 | 7.1 | High | 2024-06-01 |
| CVE-2024-2417 | WordPress Plugin user-registration 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-862 | 8.8 | High | 2024-05-02 |
| CVE-2024-3295 | WordPress plugin User Registration 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-862 | 6.5 | Medium | 2024-05-02 |
| CVE-2024-1812 | WordPress Plugin Everest Forms 安全漏洞 — Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form BuilderCWE-918 | 7.2 | High | 2024-04-09 |
| CVE-2023-27459 | WordPress Plugin User Registration 代码问题漏洞 — User RegistrationCWE-502 | 7.4 | High | 2024-03-26 |
| CVE-2024-1720 | WordPress Plugin User Registration 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-79 | 4.7 | Medium | 2024-03-07 |
| CVE-2023-51695 | WordPress plugin Everest Forms 跨站脚本漏洞 — Everest Forms – Build Contact Forms, Surveys, Polls, Application Forms, and more with Ease!CWE-79 | 5.9 | Medium | 2024-02-01 |
| CVE-2023-3342 | WordPress plugin User Registration 代码问题漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-434 | 9.9 | Critical | 2023-07-13 |
| CVE-2023-3343 | WordPress plugin User Registration 代码问题漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-502 | 8.8 | High | 2023-07-13 |
| CVE-2023-23987 | WordPress plugin User Registration 跨站脚本漏洞 — User RegistrationCWE-79 | 5.9 | Medium | 2023-04-06 |
本页汇总了 WPEverest 厂商截至目前公开的全部 47 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。