目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

WebToffee 厂商漏洞列表 / CVE 中文分析 50

WebToffee 厂商相关 50 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

WebToffee 主要开发 WordPress 电商插件,涵盖支付网关、优惠券及订阅功能。其代码库已收录 50 条 CVE,常见漏洞包括反射型 XSS、未授权访问及任意文件读取,部分版本存在远程代码执行风险。安全事件多源于输入验证缺失与权限控制疏忽。建议用户及时更新插件至最新稳定版,并严格遵循最小权限原则配置服务器环境,以降低潜在攻击面。

Top products by WebToffee: Order Export & Order Import for WooCommerce Export and Import Users and Customers WordPress Backup & Migration Product Import Export for WooCommerce – Import Export Product CSV Suite WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels Product Feed for WooCommerce Comments Import & Export WordPress Comments Import & Export Product Import Export for WooCommerce Import Export WordPress Users WebToffee eCommerce Marketing Automation Accessibility Toolkit by WebYes Alt Text Generator AI – Auto Generate & Bulk Update Alt Texts For Images Smart Coupons for WooCommerce Wishlist for WooCommerce WebToffee WP Backup and Migration WooCommerce Shipping Label Decorator – WooCommerce Email Customizer Product Reviews Import Export for WooCommerce Stripe Payment Plugin for WooCommerce
CVE ID标题CVSS风险等级Published
CVE-2026-32441 WordPress plugin Comments Import & Export 安全漏洞 — Comments Import & ExportCWE-862 7.7 High2026-03-25
CVE-2026-22480 WordPress plugin Product Feed for WooCommerce 代码问题漏洞 — Product Feed for WooCommerceCWE-502 7.2 High2026-03-25
CVE-2025-67599 WordPress plugin WebToffee eCommerce Marketing Automation 安全漏洞 — WebToffee eCommerce Marketing AutomationCWE-862 4.3 Medium2025-12-09
CVE-2025-66112 WordPress plugin Accessibility Toolkit by WebYes 安全漏洞 — Accessibility Toolkit by WebYesCWE-862 4.3 Medium2025-11-21
CVE-2025-66089 WordPress plugin Product Feed for WooCommerce 安全漏洞 — Product Feed for WooCommerceCWE-862 4.3 Medium2025-11-21
CVE-2025-64382 WordPress plugin Order Export & Order Import for WooCommerce 安全漏洞 — Order Export & Order Import for WooCommerceCWE-862 4.3 Medium2025-11-13
CVE-2025-12113 WordPress plugin Alt Text Generator AI – Auto Generate & Bulk Update Alt Texts For Images 安全漏洞 — Alt Text Generator AI – Auto Generate & Bulk Update Alt Texts For ImagesCWE-862 4.3 Medium2025-11-12
CVE-2025-64358 WordPress plugin Smart Coupons for WooCommerce 安全漏洞 — Smart Coupons for WooCommerceCWE-862 4.3 Medium2025-10-31
CVE-2025-49287 WordPress plugin Product Feed for WooCommerce 安全漏洞 — Product Feed for WooCommerceCWE-862 4.3 Medium2025-06-06
CVE-2025-3919 WordPress plugin Comments Import & Export 跨站脚本漏洞 — Comments Import & ExportCWE-79 6.4 Medium2025-06-02
CVE-2025-24651 WordPress plugin WordPress Backup & Migration 日志信息泄露漏洞 — WordPress Backup & MigrationCWE-532 5.9 Medium2025-04-17
CVE-2025-1913 WordPress plugin Product Import Export for WooCommerce 代码问题漏洞 — Product Import Export for WooCommerce – Import Export Product CSV SuiteCWE-502 7.2 High2025-03-26
CVE-2025-1911 WordPress plugin Product Import Export for WooCommerce 安全漏洞 — Product Import Export for WooCommerce – Import Export Product CSV SuiteCWE-73 2.7 Low2025-03-26
CVE-2025-1912 WordPress plugin Product Import Export for WooCommerce 代码问题漏洞 — Product Import Export for WooCommerce – Import Export Product CSV SuiteCWE-918 7.6 High2025-03-26
CVE-2025-1769 WordPress plugin Product Import Export for WooCommerce 路径遍历漏洞 — Product Import Export for WooCommerce – Import Export Product CSV SuiteCWE-22 4.9 Medium2025-03-26
CVE-2025-1973 WordPress plugin Export and Import Users and Customers 路径遍历漏洞 — Export and Import Users and CustomersCWE-22 4.9 Medium2025-03-22
CVE-2025-1971 WordPress plugin Export and Import Users and Customers 代码问题漏洞 — Export and Import Users and CustomersCWE-502 7.2 High2025-03-22
CVE-2025-1970 WordPress plugin Export and Import Users and Customers 代码问题漏洞 — Export and Import Users and CustomersCWE-918 7.6 High2025-03-22
CVE-2025-1972 WordPress plugin Export and Import Users and Customers 安全漏洞 — Export and Import Users and CustomersCWE-73 2.7 Low2025-03-22
CVE-2024-13920 WordPress plugin Order Export & Order Import for WooCommerce 路径遍历漏洞 — Order Export & Order Import for WooCommerceCWE-22 4.9 Medium2025-03-20
CVE-2024-13921 WordPress plugin Order Export & Order Import for WooCommerce 代码问题漏洞 — Order Export & Order Import for WooCommerceCWE-502 7.2 High2025-03-20
CVE-2024-13923 WordPress plugin Order Export & Order Import for WooCommerce 代码问题漏洞 — Order Export & Order Import for WooCommerceCWE-918 7.6 High2025-03-20
CVE-2024-13922 WordPress plugin Order Export & Order Import for WooCommerce 安全漏洞 — Order Export & Order Import for WooCommerceCWE-73 2.7 Low2025-03-20
CVE-2025-24657 WordPress plugin Wishlist for WooCommerce 跨站脚本漏洞 — Wishlist for WooCommerceCWE-79 5.9 Medium2025-01-24
CVE-2025-24644 WordPress plugin WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels 跨站脚本漏洞 — WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping LabelsCWE-79 5.9 Medium2025-01-24
CVE-2023-45636 WordPress plugin WordPress Backup & Migration 安全漏洞 — WordPress Backup & MigrationCWE-862 5.4 Medium2025-01-02
CVE-2023-33928 WordPress plugin WordPress Backup & Migration 安全漏洞 — WordPress Backup & MigrationCWE-862 4.3 Medium2024-12-13
CVE-2024-7514 WordPress plugin Comments Import & Export 路径遍历漏洞 — Comments Import & ExportCWE-22 6.5 Medium2024-10-11
CVE-2023-52183 WordPress plugin WordPress Backup & Migration 安全漏洞 — WordPress Backup & MigrationCWE-862 5.4 Medium2024-06-11
CVE-2023-51546 WordPress plugin WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels 安全漏洞 — WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping LabelsCWE-269 7.2 High2024-05-17

本页汇总了 WebToffee 厂商截至目前公开的全部 50 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。