wpeverest 厂商漏洞列表 / CVE 中文分析 47

wpeverest 厂商相关 47 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

WPEverest 主要提供 WordPress 建站插件及主题服务，其核心用途在于简化网站搭建流程。截至最新统计，该项目已收录 47 条 CVE，历史漏洞多集中于远程代码执行、跨站脚本及权限绕过等高危类型。部分组件因缺乏严格输入验证导致安全风险累积，引发多次大规模利用。建议用户及时更新组件以修复已知缺陷，并遵循最小权限原则配置环境，降低潜在攻击面。

Top products by wpeverest: User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder User Registration Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder Everest Forms Pro Everest Forms Everest Forms – Build Contact Forms, Surveys, Polls, Application Forms, and more with Ease! User Registration PRO – Custom Registration Form, Login Form, and User Profile WordPress Plugin Everest Forms - Frontend Listing User Registration Advanced Fields

CVEs 47

CVE ID	标题	CVSS	风险等级	Published
CVE-2026-3601	User Registration & Membership <=5.1.4 越权修改页面内容漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-862	4.3	Medium	2026-05-05
CVE-2026-4882	User Registration Advanced Fields <= 1.6.20 未授权任意文件上传漏洞 — User Registration Advanced FieldsCWE-434	9.8	Critical	2026-05-02
CVE-2026-42652	WordPress Plugin User Registration 跨站脚本漏洞 — User RegistrationCWE-79	7.1	High	2026-04-29
CVE-2026-5478	WordPress plugin Everest Forms 安全漏洞 — Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form BuilderCWE-22	8.1	High	2026-04-20
CVE-2026-6203	WordPress plugin User Registration & Membership 输入验证错误漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-601	6.1	Medium	2026-04-13
CVE-2026-1865	WordPress plugin User Registration & Membership SQL注入漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-89	6.5	Medium	2026-04-08
CVE-2026-3296	WordPress plugin Everest Forms 代码问题漏洞 — Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form BuilderCWE-502	9.8	Critical	2026-04-08
CVE-2026-3300	WordPress plugin Everest Forms Pro 代码注入漏洞 — Everest Forms ProCWE-94	9.8	Critical	2026-03-31
CVE-2026-32488	WordPress plugin User Registration 安全漏洞 — User RegistrationCWE-266	8.1	High	2026-03-25
CVE-2026-4056	WordPress plugin User Registration & Membership 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-862	5.4	Medium	2026-03-23
CVE-2026-27070	WordPress plugin Everest Forms Pro 跨站脚本漏洞 — Everest Forms ProCWE-79	7.1	High	2026-03-19
CVE-2026-1492	WordPress plugin User Registration & Membership 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-269	9.8	Critical	2026-03-03
CVE-2026-2356	WordPress plugin User Registration & Membership 访问控制错误漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-284	5.3	Medium	2026-02-26
CVE-2026-1779	WordPress plugin User Registration & Membership 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-288	8.1	High	2026-02-26
CVE-2026-22422	WordPress plugin Everest Forms 安全漏洞 — Everest FormsCWE-80	5.3	Medium	2026-02-19
CVE-2026-24353	WordPress plugin User Registration 安全漏洞 — User RegistrationCWE-862	4.3	Medium	2026-01-22
CVE-2025-67956	WordPress plugin User Registration 安全漏洞 — User RegistrationCWE-862	8.2	High	2026-01-22
CVE-2025-14976	WordPress plugin User Registration & Membership 跨站请求伪造漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-352	5.4	Medium	2026-01-10
CVE-2025-13367	WordPress plugin User Registration & Membership 跨站脚本漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-79	6.4	Medium	2025-12-15
CVE-2025-8871	WordPress plugin Everest Forms Pro 代码问题漏洞 — Everest Forms ProCWE-502	5.6	Medium	2025-11-05
CVE-2025-60210	WordPress plugin Everest Forms - Frontend Listing 安全漏洞 — Everest Forms - Frontend ListingCWE-502	9.8	Critical	2025-10-22
CVE-2025-9085	WordPress plugin User Registration & Membership SQL注入漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-89	4.9	Medium	2025-09-06
CVE-2025-6831	WordPress plugin User Registration 跨站脚本漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-79	6.4	Medium	2025-07-22
CVE-2025-5927	WordPress plugin Everest Forms 安全漏洞 — Everest Forms ProCWE-36	7.5	High	2025-06-25
CVE-2025-3281	WordPress plugin User Registration & Membership – Custom Registration Form, Login Form, and User Profile 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-639	5.3	Medium	2025-05-06
CVE-2025-39400	WordPress plugin User Registration 跨站脚本漏洞 — User RegistrationCWE-79	7.1	High	2025-04-24
CVE-2025-3284	WordPress plugin User Registration & Membership – Custom Registration Form, Login Form, and User Profile 跨站请求伪造漏洞 — User Registration PRO – Custom Registration Form, Login Form, and User Profile WordPress PluginCWE-352	4.3	Medium	2025-04-19
CVE-2025-3282	WordPress plugin User Registration & Membership 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-639	5.3	Medium	2025-04-12
CVE-2025-3292	WordPress plugin User Registration & Membership 安全漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-639	4.3	Medium	2025-04-12
CVE-2025-3421	WordPress plugin Everest Forms 跨站脚本漏洞 — Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form BuilderCWE-79	6.1	Medium	2025-04-11

本页汇总了 wpeverest 厂商截至目前公开的全部 47 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

wpeverest 厂商漏洞列表 / CVE 中文分析 47

目标达成感谢每一位支持者 — 我们达成了 100% 目标！