目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

mndpsingh287 厂商漏洞列表 / CVE 中文分析 13

mndpsingh287 厂商相关 13 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

该厂商/项目主要涉及软件开发领域,已记录13条CVE漏洞。历史上常见漏洞类型包括远程代码执行(RCE)、跨站脚本(XSS)和权限绕过等安全风险。值得关注的是,其产品在身份验证和输入验证方面存在薄弱环节,导致多次安全事件。安全社区建议用户及时更新补丁并实施最小权限原则以降低风险。

上位製品 mndpsingh287: File Manager Theme Editor WP Mail Track Page Scroll
CVE IDタイトルCVSS深刻度公開日
CVE-2026-39640 WordPress Theme Editor plugin <= 3.2 - Cross Site Request Forgery (CSRF) to Remote Code Execution vulnerability — Theme EditorCWE-352 9.6 Critical2026-04-08
CVE-2025-68008 WordPress WP Mail plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability — WP MailCWE-79 7.1 High2026-01-22
CVE-2025-9890 Theme Editor <= 3.0 - Cross-Site Request Forgery to Remote Code Execution — Theme EditorCWE-352 8.8 High2025-10-18
CVE-2025-58822 WordPress WP Mail Plugin <= 1.3 - Cross Site Scripting (XSS) Vulnerability — WP MailCWE-79 6.5 Medium2025-09-05
CVE-2025-23536 WordPress Track Page Scroll plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability — Track Page ScrollCWE-79 7.1 High2025-03-03
CVE-2024-37254 WordPress WP File Manager plugin <= 7.2.7 - Broken Access Control vulnerability — File ManagerCWE-862 4.3 Medium2024-11-01
CVE-2018-25105 File Manager <= 3.0 - Unauthenticated Arbitrary File Upload/Download — File ManagerCWE-862 9.8 Critical2024-10-16
CVE-2022-2440 Theme Editor <= 2.8 - Authenticated (Admin+) PHAR Deserialization — Theme EditorCWE-502 7.2 High2024-08-29
CVE-2024-2654 File Manager <= 7.2.5 - Authenticated (Administrator+) Directory Traversal — File ManagerCWE-35 6.8 Medium2024-04-09
CVE-2023-6091 WordPress Theme Editor plugin <= 2.7.1 - Arbitrary File Upload vulnerability — Theme EditorCWE-434 7.2 High2024-03-26
CVE-2024-1538 File Manager <= 7.2.4 - Cross-Site Request Forgery to Local JS File Inclusion — File ManagerCWE-352 8.8 High2024-03-21
CVE-2023-6825 File Manager And File Manager Pro (Multiple Versions) - Directory Traversal — File ManagerCWE-23 9.9 Critical2024-03-13
CVE-2024-0761 File Manager <= 7.2.1 - Sensitive Information Exposure via Backup Filenames — File ManagerCWE-330 8.1 High2024-02-05

本页汇总了 mndpsingh287 厂商截至目前公开的全部 13 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。