codepeople 厂商漏洞列表 / CVE 中文分析 70

codepeople 厂商相关 70 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

Codepeople 主要提供数字资产管理及内容管理系统解决方案，其开源项目广泛用于网站构建。截至最新统计，该厂商已收录 70 条 CVE，历史漏洞多集中于跨站脚本（XSS）与远程代码执行（RCE），部分版本存在越权访问风险。这些缺陷常源于输入验证不足或权限控制逻辑缺陷。建议用户及时更新补丁，强化配置审查，以应对潜在的安全威胁，确保系统稳定性与数据隐私。

CVEs 70

CVE ID	标题	CVSS	风险等级	Published
CVE-2026-6810	WordPress plugin Booking Calendar Contact Form 安全漏洞 — Booking Calendar Contact FormCWE-639	5.3	Medium	2026-04-24
CVE-2026-32483	WordPress plugin Contact Form Email 安全漏洞 — Contact Form EmailCWE-862	6.5	Medium	2026-03-25
CVE-2026-25465	WordPress plugin CP Multi View Event Calendar 安全漏洞 — CP Multi View Event CalendarCWE-79	6.5	Medium	2026-03-25
CVE-2026-32432	WordPress plugin WP Time Slots Booking Form 安全漏洞 — WP Time Slots Booking FormCWE-862	5.3	Medium	2026-03-13
CVE-2026-32433	WordPress plugin CP Contact Form with Paypal SQL注入漏洞 — CP Contact Form with PaypalCWE-89	8.5	High	2026-03-13
CVE-2026-3986	WordPress plugin Calculated Fields Form 跨站脚本漏洞 — Calculated Fields FormCWE-79	6.4	Medium	2026-03-13
CVE-2026-25368	WordPress plugin Calculated Fields Form 安全漏洞 — Calculated Fields FormCWE-862	6.5	Medium	2026-02-19
CVE-2026-1083	WordPress plugin Appointment Hour Booking 跨站脚本漏洞 — Appointment Hour Booking – Booking CalendarCWE-79	4.4	Medium	2026-01-28
CVE-2026-0684	WordPress plugin CP Image Store with Slideshow 安全漏洞 — CP Image Store with SlideshowCWE-863	4.3	Medium	2026-01-13
CVE-2025-68850	WordPress plugin Sell Downloads 安全漏洞 — Sell DownloadsCWE-862	7.5	High	2026-01-05
CVE-2025-68569	WordPress plugin WP Time Slots Booking Form 安全漏洞 — WP Time Slots Booking FormCWE-862	6.5	Medium	2025-12-24
CVE-2025-10019	WordPress plugin Contact Form Email 安全漏洞 — Contact Form EmailCWE-639	6.5	Medium	2025-12-18
CVE-2025-13318	WordPress plugin Booking Calendar Contact Form 安全漏洞 — Booking Calendar Contact FormCWE-862	5.3	Medium	2025-11-22
CVE-2025-13384	WordPress plugin CP Contact Form with PayPal 安全漏洞 — CP Contact Form with PayPalCWE-862	7.5	High	2025-11-22
CVE-2025-13317	WordPress plugin Appointment Booking Calendar 安全漏洞 — Appointment Booking CalendarCWE-862	5.3	Medium	2025-11-22
CVE-2025-64369	WordPress plugin Contact Form Email 安全漏洞 — Contact Form EmailCWE-862	6.5	Medium	2025-11-13
CVE-2025-64261	WordPress plugin Appointment Booking Calendar 安全漏洞 — Appointment Booking CalendarCWE-862	5.4	Medium	2025-11-13
CVE-2025-58009	WordPress plugin CP Multi View Event Calendar 安全漏洞 — CP Multi View Event CalendarCWE-862	3.8	Low	2025-09-22
CVE-2025-48231	WordPress plugin Booking Calendar Contact Form 跨站脚本漏洞 — Booking Calendar Contact FormCWE-79	6.5	Medium	2025-07-04
CVE-2025-50025	WordPress plugin CP Polls 跨站脚本漏洞 — CP PollsCWE-79	5.9	Medium	2025-06-20
CVE-2025-49332	WordPress plugin WP Time Slots Booking Form 跨站请求伪造漏洞 — WP Time Slots Booking FormCWE-352	4.3	Medium	2025-06-06
CVE-2025-49291	WordPress plugin Calculated Fields Form 跨站请求伪造漏洞 — Calculated Fields FormCWE-352	4.3	Medium	2025-06-06
CVE-2025-47472	WordPress plugin Music Player for WooCommerce 安全漏洞 — Music Player for WooCommerceCWE-862	5.4	Medium	2025-05-07
CVE-2025-46247	WordPress plugin Appointment Booking Calendar 安全漏洞 — Appointment Booking CalendarCWE-862	5.3	Medium	2025-04-22
CVE-2025-46241	WordPress plugin Appointment Booking Calendar 跨站请求伪造漏洞 — Appointment Booking CalendarCWE-352	8.2	High	2025-04-22
CVE-2025-39562	WordPress plugin Payment Form for PayPal Pro 跨站脚本漏洞 — Payment Form for PayPal ProCWE-79	5.9	Medium	2025-04-17
CVE-2024-13758	WordPress plugin CP Contact Form with PayPal 跨站请求伪造漏洞 — CP Contact Form with PayPalCWE-352	6.5	Medium	2025-01-30
CVE-2025-24626	WordPress plugin Music Store 跨站脚本漏洞 — Music StoreCWE-79	7.1	High	2025-01-27
CVE-2025-24723	WordPress plugin Booking Calendar Contact Form 跨站脚本漏洞 — Booking Calendar Contact FormCWE-79	5.9	Medium	2025-01-24
CVE-2025-24727	WordPress plugin Contact Form Email 跨站脚本漏洞 — Contact Form EmailCWE-79	5.9	Medium	2025-01-24

本页汇总了 codepeople 厂商截至目前公开的全部 70 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

codepeople 厂商漏洞列表 / CVE 中文分析 70

目标达成感谢每一位支持者 — 我们达成了 100% 目标！