thimpress 厂商漏洞列表 / CVE 中文分析 100

thimpress 厂商相关 100 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

ThimPress 主要开发 WordPress 插件，核心用途在于提供页面构建、电商及表单功能。其历史漏洞记录显示，常见风险包括跨站脚本（XSS）、任意文件读取及未授权访问，部分版本存在远程代码执行隐患。截至最新统计，该项目已收录 100 条 CVE，反映出其代码库在输入验证与权限控制方面存在长期安全短板，用户需及时更新以规避潜在攻击风险。

CVEs 100

CVE ID	标题	CVSS	风险等级	Published
CVE-2026-4650	FundPress <= 2.0.8 任意捐赠状态修改漏洞 — FundPress – WordPress Donation PluginCWE-862	5.3	Medium	2026-05-02
CVE-2026-4365	WordPress plugin LearnPress 安全漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-862	9.1	Critical	2026-04-14
CVE-2026-4333	WordPress plugin LearnPress – WordPress LMS Plugin 跨站脚本漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-79	6.4	Medium	2026-04-08
CVE-2026-25002	WordPress plugin LearnPress – Sepay Payment 安全漏洞 — LearnPress – Sepay PaymentCWE-288	7.5	High	2026-03-25
CVE-2026-3225	WordPress plugin LearnPress – WordPress LMS Plugin 安全漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-862	4.3	Medium	2026-03-23
CVE-2026-27065	WordPress plugin BuilderPress 安全漏洞 — BuilderPressCWE-98	9.8	Critical	2026-03-19
CVE-2026-1870	WordPress plugin Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor 安全漏洞 — Thim Kit for Elementor – Pre-built Templates & Widgets for ElementorCWE-862	5.3	Medium	2026-03-14
CVE-2026-3226	WordPress plugin LearnPress – WordPress LMS Plugin 安全漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-862	4.3	Medium	2026-03-12
CVE-2026-1787	WordPress plugin LearnPress Export Import – WordPress extension for LearnPress 安全漏洞 — LearnPress – Backup & Migration ToolCWE-862	4.8	Medium	2026-02-21
CVE-2026-27050	WordPress plugin RealPress 安全漏洞 — RealPressCWE-352	5.4	Medium	2026-02-19
CVE-2026-24361	WordPress plugin LearnPress – Course Review 安全漏洞 — LearnPress – Course ReviewCWE-79	6.5	Medium	2026-01-22
CVE-2025-14798	WordPress plugin LearnPress 安全漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-862	5.3	Medium	2026-01-20
CVE-2025-13725	WordPress plugin Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor 路径遍历漏洞 — Thim BlocksCWE-22	6.5	Medium	2026-01-17
CVE-2025-14075	WordPress plugin WP Hotel Booking 信息泄露漏洞 — WP Hotel BookingCWE-200	5.3	Medium	2026-01-17
CVE-2025-14802	WordPress plugin LearnPress 安全漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-639	5.4	Medium	2026-01-07
CVE-2025-13964	WordPress plugin LearnPress – WordPress LMS Plugin 安全漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-862	5.3	Medium	2026-01-06
CVE-2025-53344	WordPress plugin Thim Core 跨站请求伪造漏洞 — Thim CoreCWE-352	4.3	Medium	2026-01-05
CVE-2025-66054	WordPress plugin LearnPress 安全漏洞 — LearnPressCWE-862	7.5	High	2025-12-18
CVE-2025-13956	WordPress plugin LearnPress – WordPress LMS Plugin 安全漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-862	5.3	Medium	2025-12-16
CVE-2025-14387	WordPress plugin LearnPress – WordPress LMS Plugin 跨站脚本漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-79	6.4	Medium	2025-12-15
CVE-2025-63012	WordPress plugin WP Hotel Booking 安全漏洞 — WP Hotel BookingCWE-352	4.3	Medium	2025-12-09
CVE-2025-63011	WordPress plugin WP Hotel Booking 跨站脚本漏洞 — WP Hotel BookingCWE-79	5.9	Medium	2025-12-09
CVE-2025-63013	WordPress plugin WP Hotel Booking 安全漏洞 — WP Hotel BookingCWE-497	4.3	Medium	2025-12-09
CVE-2025-67594	WordPress plugin Thim Elementor Kit 安全漏洞 — Thim Elementor KitCWE-639	4.3	Medium	2025-12-09
CVE-2025-67573	WordPress plugin Sailing 安全漏洞 — SailingCWE-862	5.3	Medium	2025-12-09
CVE-2025-67536	WordPress plugin LearnPress 安全漏洞 — LearnPressCWE-79	6.5	Medium	2025-12-09
CVE-2025-67526	WordPress plugin Sailing 安全漏洞 — SailingCWE-98	7.5	High	2025-12-09
CVE-2025-11368	WordPress plugin LearnPress 信息泄露漏洞 — LearnPress – WordPress LMS Plugin for Create and Sell Online CoursesCWE-200	5.3	Medium	2025-11-21
CVE-2025-60200	WordPress plugin LearnPress Export Import 安全漏洞 — LearnPress Export ImportCWE-98	7.5	High	2025-11-06
CVE-2025-54721	WordPress plugin Resca 安全漏洞 — RescaCWE-79	7.1	High	2025-11-06

本页汇总了 thimpress 厂商截至目前公开的全部 100 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

thimpress 厂商漏洞列表 / CVE 中文分析 100

目标达成感谢每一位支持者 — 我们达成了 100% 目标！