netweblogic 厂商漏洞列表 / CVE 中文分析 14

netweblogic 厂商相关 14 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

NetWebLogic是一家专注于企业级中间件安全解决方案的厂商，其产品主要用于保护WebLogic等应用服务器免受攻击。历史上，其产品曾频繁出现远程代码执行(RCE)、跨站脚本(XSS)和权限绕过等漏洞类型。截至最新统计，该厂商相关产品已累计披露14条CVE记录，其中部分高危漏洞曾被广泛利用，建议用户及时更新至安全版本并加强访问控制措施。

上位製品 netweblogic: Events Manager – Calendar, Bookings, Tickets, and more! Events Manager Meta Tag Manager

CVEs 14

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2025-12976	Events Manager <= 7.2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'events_list_grouped' Shortcode — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79	6.4	Medium	2025-12-18
CVE-2025-12408	Events Manager <= 7.2.2.2 - Unauthenticated Information Exposure — Events Manager – Calendar, Bookings, Tickets, and more!CWE-200	5.3	Medium	2025-12-12
CVE-2025-12407	Events Manager – Calendar, Bookings, Tickets, and more! <= 7.2.2.2 - Cross-Site Request Forgery to Location Deletion — Events Manager – Calendar, Bookings, Tickets, and more!CWE-352	4.3	Medium	2025-12-12
CVE-2025-6976	Events Manager <= 7.0.3 - Authenticated(Contributor+) Stored Cross-Site Scripting via Plugin Shortcodes — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79	6.4	Medium	2025-07-09
CVE-2025-6975	Event Manager <= 7.0.3 - Reflected Cross-Site Scripting via `calendar_header` Parameter — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79	6.1	Medium	2025-07-09
CVE-2025-6970	Events Manager <= 7.0.3 - Unauthenticated SQL Injection via `orderby` Parameter — Events Manager – Calendar, Bookings, Tickets, and more!CWE-89	7.5	High	2025-07-09
CVE-2024-11260	Events Manager – Calendar, Bookings, Tickets, and more! <= 6.6.3 - Unauthenticated SQL Injection via Event Status Parameter — Events Manager – Calendar, Bookings, Tickets, and more!CWE-89	7.5	High	2025-02-21
CVE-2024-5889	Events Manager <= 6.4.8 - Reflected Cross-Site Scripting — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79	6.1	Medium	2024-06-29
CVE-2024-3492	Events Manager – Calendar, Bookings, Tickets, and more! <= 6.4.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via event, location, and event_category Shortcodes — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79	6.4	Medium	2024-06-12
CVE-2024-2110	Events Manager <= 6.4.7.1 - Cross-Site Request Forgery — Events Manager – Calendar, Bookings, Tickets, and more!CWE-352	4.3	Medium	2024-03-28
CVE-2024-1770	Meta Tag Manager <= 3.0.2 - Authenticated (Subscriber+) PHP Object Injection — Meta Tag ManagerCWE-502	8.8	High	2024-03-28
CVE-2024-2111	Events Manager <= 6.4.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79	6.4	Medium	2024-03-28
CVE-2024-0614	Events Manager <= 6.4.6.4 - Authenticated(Administator+) Stored Cross-Site Scripting via settings — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79	4.4	Medium	2024-03-13
CVE-2018-0576	WordPress Events Manager插件跨站脚本漏洞 — Events Manager	6.1	-	2018-05-14

本页汇总了 netweblogic 厂商截至目前公开的全部 14 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目標達成 すべての支援者に感謝 — 100%達成しました！

netweblogic 厂商漏洞列表 / CVE 中文分析 14

目標達成すべての支援者に感謝 — 100%達成しました！