目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

bplugins 厂商漏洞列表 / CVE 中文分析 80

bplugins 厂商相关 80 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

bplugins 是一款面向 WordPress 的插件开发框架,旨在简化插件构建流程。截至最新统计,该框架已关联 72 条 CVE 漏洞。历史漏洞主要集中在远程代码执行、跨站脚本及权限绕过等高危类型,部分源于对输入验证和输出转义的疏忽。尽管其提升了开发效率,但底层安全机制的缺陷导致多次被利用,建议使用者严格审查依赖版本并及时更新,以规避潜在的系统入侵风险。

CVE ID标题CVSS风险等级Published
CVE-2025-10735 WordPress plugin Block For Mailchimp 代码问题漏洞 — Block for Mailchimp – Add Email Subscription Forms and Collect LeadsCWE-918 4.0 Medium2025-10-01
CVE-2025-9203 WordPress plugin Media Player Addons for Elementor 跨站脚本漏洞 — Media Player Addons for Elementor – Audio and Video Widgets for ElementorCWE-79 6.4 Medium2025-09-17
CVE-2025-54734 WordPress plugin B Slider 安全漏洞 — B SliderCWE-862 5.8 Medium2025-08-28
CVE-2025-54710 WordPress plugin Tiktok Feed 安全漏洞 — Tiktok FeedCWE-862 7.1 High2025-08-28
CVE-2025-8676 WordPress plugin B Slider 信息泄露漏洞 — bSlider – Create Responsive Image, Post, Product, and Video SlidersCWE-200 4.3 Medium2025-08-15
CVE-2025-8680 WordPress plugin B Slider 代码问题漏洞 — bSlider – Create Responsive Image, Post, Product, and Video SlidersCWE-918 4.3 Medium2025-08-15
CVE-2025-54708 WordPress plugin B Blocks 跨站脚本漏洞 — B BlocksCWE-79 6.5 Medium2025-08-14
CVE-2025-54694 WordPress plugin Button Block 跨站请求伪造漏洞 — Button BlockCWE-352 4.3 Medium2025-08-14
CVE-2025-8418 WordPress plugin B Slider- Gutenberg Slider Block for WP 安全漏洞 — bSlider – Create Responsive Image, Post, Product, and Video SlidersCWE-862 8.8 High2025-08-12
CVE-2025-8059 WordPress plugin B Blocks 安全漏洞 — bBlocks – Essential Gutenberg Blocks & Patterns CollectionCWE-862 9.8 Critical2025-08-12
CVE-2025-54051 WordPress plugin LightBox Block 跨站脚本漏洞 — LightBox BlockCWE-79 6.5 Medium2025-07-16
CVE-2025-27326 WordPress plugin Video Gallery Block 跨站脚本漏洞 — Video Gallery BlockCWE-79 6.5 Medium2025-07-04
CVE-2025-2579 WordPress plugin Lottie Player 跨站脚本漏洞 — Lottie Player – Add Interactive Lottie Animations with Block SupportCWE-79 6.4 Medium2025-04-24
CVE-2025-39524 WordPress plugin Html5 Audio Player 安全漏洞 — Html5 Audio PlayerCWE-80 6.5 Medium2025-04-16
CVE-2025-32173 WordPress plugin B Blocks - The ultimate block collection 跨站脚本漏洞 — B BlocksCWE-79 6.5 Medium2025-04-04
CVE-2024-13731 WordPress plugin Alert Box Block 跨站脚本漏洞 — Alert Box Block – Display Custom Alerts and MessagesCWE-79 6.4 Medium2025-03-25
CVE-2025-26952 WordPress plugin Business Card Block 跨站脚本漏洞 — Business Card BlockCWE-79 6.5 Medium2025-02-25
CVE-2025-26945 WordPress plugin Info Cards 跨站脚本漏洞 — Info CardsCWE-79 6.5 Medium2025-02-25
CVE-2025-26939 WordPress plugin Counters Block 跨站脚本漏洞 — Counters BlockCWE-79 6.5 Medium2025-02-25
CVE-2025-26947 WordPress plugin Services Section block 跨站脚本漏洞 — Services Section blockCWE-79 6.5 Medium2025-02-25
CVE-2025-26949 WordPress plugin Team Section Block 跨站脚本漏洞 — Team Section BlockCWE-79 6.5 Medium2025-02-25
CVE-2025-26937 WordPress plugin Icon List Block 跨站脚本漏洞 — Icon List BlockCWE-79 6.5 Medium2025-02-25
CVE-2025-26938 WordPress plugin Countdown Timer 跨站脚本漏洞 — Countdown TimerCWE-79 6.5 Medium2025-02-25
CVE-2025-26881 WordPress plugin Sticky Content 跨站脚本漏洞 — Sticky ContentCWE-79 6.5 Medium2025-02-25
CVE-2025-26883 WordPress plugin Animated Text Block 安全漏洞 — Animated Text BlockCWE-862 6.5 Medium2025-02-24
CVE-2025-26754 WordPress plugin Timeline Block 跨站脚本漏洞 — Timeline BlockCWE-79 6.5 Medium2025-02-17
CVE-2025-22675 WordPress plugin Alert Box Block 跨站脚本漏洞 — Alert Box Block – Display notice/alerts in the front endCWE-79 6.5 Medium2025-02-04
CVE-2024-13514 WordPress plugin B Slider- Gutenberg Slider Block for WP 访问控制错误漏洞 — bSlider – Create Responsive Image, Post, Product, and Video SlidersCWE-284 4.3 Medium2025-02-04
CVE-2025-24595 WordPress plugin All Embed – Elementor Addons 跨站脚本漏洞 — All Embed – Elementor AddonsCWE-79 6.5 Medium2025-01-24
CVE-2025-22787 WordPress plugin Button Block 安全漏洞 — Button BlockCWE-862 4.3 Medium2025-01-15

本页汇总了 bplugins 厂商截至目前公开的全部 80 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。