wclovers 厂商相关 18 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。
wclovers 是一个专注于网络安全研究的团队,主要提供漏洞挖掘和渗透测试服务。历史上,其关联产品常见漏洞类型包括远程代码执行、跨站脚本和权限绕过等。截至最新统计,该团队已披露 18 条 CVE 漏洞,涉及多个开源项目。值得关注的是,其发现的某些高危漏洞曾导致多个主流框架紧急发布安全更新,反映了其在安全研究领域的影响力。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2026-2554 | WCFM 6.7.25 认证IDOR用户删除漏洞 — WCFM – Frontend Manager for WooCommerceCWE-639 | 8.1 | High | 2026-05-02 |
| CVE-2026-4896 | WordPress plugin WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible 安全漏洞 — WCFM – Frontend Manager for WooCommerceCWE-639 | 8.1 | High | 2026-04-04 |
| CVE-2026-1722 | WordPress plugin WCFM Marketplace – Multivendor Marketplace for WooCommerce 安全漏洞 — WCFM Marketplace – Multivendor Marketplace for WooCommerceCWE-862 | 5.3 | Medium | 2026-02-10 |
| CVE-2025-15147 | WordPress plugin WCFM Membership 安全漏洞 — WCFM Membership – WooCommerce Memberships for Multivendor MarketplaceCWE-639 | 4.3 | Medium | 2026-02-09 |
| CVE-2026-0845 | WordPress plugin WCFM 安全漏洞 — WCFM – Frontend Manager for WooCommerceCWE-862 | 7.2 | High | 2026-02-09 |
| CVE-2025-3780 | WordPress plugin WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible 安全漏洞 — WCFM – Frontend Manager for WooCommerceCWE-862 | 6.5 | Medium | 2025-07-08 |
| CVE-2025-1311 | WordPress plugin WooCommerce Multivendor Marketplace SQL注入漏洞 — WCFM – Multivendor Marketplace REST API for WooCommerceCWE-89 | 6.5 | Medium | 2025-03-22 |
| CVE-2024-8290 | WordPress plugin WCFM 安全漏洞 — WCFM – Frontend Manager for WooCommerceCWE-639 | 8.8 | High | 2024-09-25 |
| CVE-2023-4960 | WordPress Plugin WCFM Marketplace 安全漏洞 — WCFM Marketplace – Multivendor Marketplace for WooCommerceCWE-79 | 6.4 | Medium | 2024-01-11 |
| CVE-2023-2275 | WordPress Plugin WooCommerce Multivendor Marketplace – REST API 安全漏洞 — WCFM – Multivendor Marketplace REST API for WooCommerceCWE-862 | 4.3 | Medium | 2023-06-09 |
| CVE-2023-2276 | WordPress Plugin WCFM Membership 安全漏洞 — WCFM Membership – WooCommerce Memberships for Multivendor MarketplaceCWE-639 | 9.8 | Critical | 2023-05-20 |
| CVE-2022-4941 | WordPress plugin WCFM Marketplace 跨站请求伪造漏洞 — WCFM Membership – WooCommerce Memberships for Multivendor MarketplaceCWE-352 | 6.3 | Medium | 2023-04-05 |
| CVE-2022-4940 | WordPress plugin WCFM Marketplace 安全漏洞 — WCFM Membership – WooCommerce Memberships for Multivendor MarketplaceCWE-862 | 7.3 | High | 2023-04-05 |
| CVE-2022-4939 | WordPress plugin WCFM Marketplace 安全漏洞 — WCFM Membership – WooCommerce Memberships for Multivendor MarketplaceCWE-862 | 9.8 | Critical | 2023-04-05 |
| CVE-2022-4938 | WordPress plugin Frontend Manager 跨站请求伪造漏洞 — WCFM – Frontend Manager for WooCommerceCWE-352 | 6.3 | Medium | 2023-04-05 |
| CVE-2022-4937 | WordPress plugin Frontend Manager 安全漏洞 — WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible | 6.3 | Medium | 2023-04-05 |
| CVE-2022-4936 | WordPress plugin WCFM Marketplace 跨站请求伪造漏洞 — WCFM Marketplace – Multivendor Marketplace for WooCommerceCWE-352 | 6.3 | Medium | 2023-04-05 |
| CVE-2022-4935 | WordPress plugin WCFM Marketplace SQL注入漏洞 — WCFM Marketplace – Multivendor Marketplace for WooCommerceCWE-89 | 8.8 | High | 2023-04-05 |
本页汇总了 wclovers 厂商截至目前公开的全部 18 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。