聚合 NVD、CVE 及多源情报,深度解析 RCE 等高危风险。系统集成 CVSS 与 EPSS 模型,动态追踪 Exploit 资源与 PoC 公开状态,研判可利用性。结合官方补丁与修复方案,优化漏洞管理优先级,缩短响应周期,保障资产安全。
分配机构(CNA / 来源):[email protected] 移除此筛选
| CVE | 描述 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|
| CVE-2025-53338 | Cross-Site Request Forgery (CSRF) vulnerability in dor re.place replace allows Stored XSS.This issue affects re.place: from n/a through <= 0.2.1. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53332 | Cross-Site Request Forgery (CSRF) vulnerability in ethoseo Track Everything track-everything allows Stored XSS.This issue affects Track Everything: from n/a through <= 2.0.1. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53331 | Cross-Site Request Forgery (CSRF) vulnerability in samcharrington RSS Digest rss-digest allows Stored XSS.This issue affects RSS Digest: from n/a through <= 1.5. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53329 | Cross-Site Request Forgery (CSRF) vulnerability in szajenw Społecznościowa 6 PL 2013 spolecznosciowa-6-pl-2013 allows Stored XSS.This issue affects Społecznościowa 6 PL 2013: from n/a through <= 2.0.6. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53317 | Cross-Site Request Forgery (CSRF) vulnerability in AcmeeDesign WPShapere - WordPress admin theme wpshapere-lite allows Stored XSS.This issue affects WPShapere - WordPress admin theme: from n/a through <= 1.4.1. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53315 | Cross-Site Request Forgery (CSRF) vulnerability in alanft Relocate Upload relocate-upload allows Stored XSS.This issue affects Relocate Upload: from n/a through <= 0.24.1. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53313 | Cross-Site Request Forgery (CSRF) vulnerability in plumwd Twitch TV Embed Suite twitch-tv-embed-suite allows Stored XSS.This issue affects Twitch TV Embed Suite: from n/a through <= 2.1.0. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53312 | Cross-Site Request Forgery (CSRF) vulnerability in Looks Awesome OnionBuzz onionbuzz-viral-quiz allows Stored XSS.This issue affects OnionBuzz: from n/a through <= 1.0.7. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53311 | Cross-Site Request Forgery (CSRF) vulnerability in Amol Nirmala Waman Navayan Subscribe navayan-subscribe allows Stored XSS.This issue affects Navayan Subscribe: from n/a through <= 1.13. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53310 | Cross-Site Request Forgery (CSRF) vulnerability in Funnnny HidePost hidepost allows Reflected XSS.This issue affects HidePost: from n/a through <= 2.3.8. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53308 | Cross-Site Request Forgery (CSRF) vulnerability in gopi_plus Image Slider With Description image-slider-with-description allows Stored XSS.This issue affects Image Slider With Description: from n/a through <= 9.2. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53305 | Cross-Site Request Forgery (CSRF) vulnerability in lucidcrew WP Forum Server forum-server allows Stored XSS.This issue affects WP Forum Server: from n/a through <= 1.8.2. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53274 | Cross-Site Request Forgery (CSRF) vulnerability in Hossin Asaadi WP Permalink Translator wp-permalink-translator allows Stored XSS.This issue affects WP Permalink Translator: from n/a through <= 1.7.6. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-53271 | Cross-Site Request Forgery (CSRF) vulnerability in Anton Bond Additional Order Filters for WooCommerce additional-order-filters-for-woocommerce allows Stored XSS.This issue affects Additional Order Filters for WooCommerce: from n/a through <= 1.22. | 7.1 | 0.05% | 2025-06-27 | 2026-06-17 |
| CVE-2025-52795 | Cross-Site Request Forgery (CSRF) vulnerability in aharonyan WP Front User Submit / Front Editor front-editor allows Cross Site Request Forgery.This issue affects WP Front User Submit / Front Editor: from n/a through <= 5.0.6. | 7.1 | 0.05% | 2025-06-20 | 2026-06-17 |
| CVE-2025-52794 | Cross-Site Request Forgery (CSRF) vulnerability in Creative-Solutions Creative Contact Form sexy-contact-form allows Stored XSS.This issue affects Creative Contact Form: from n/a through <= 1.0.0. | 7.1 | 0.05% | 2025-06-20 | 2026-06-17 |
| CVE-2025-52793 | Cross-Site Request Forgery (CSRF) vulnerability in Esselink.nu Esselink.nu Settings esselinknu-settings allows Reflected XSS.This issue affects Esselink.nu Settings: from n/a through <= 4.5. | 7.1 | 0.05% | 2025-06-20 | 2026-06-17 |
| CVE-2025-52792 | Cross-Site Request Forgery (CSRF) vulnerability in vgstef WP User Stylesheet Switcher wp-user-stylesheet-switcher allows Stored XSS.This issue affects WP User Stylesheet Switcher: from n/a through <= v2.2.0. | 7.1 | 0.05% | 2025-06-20 | 2026-06-17 |
| CVE-2025-52791 | Cross-Site Request Forgery (CSRF) vulnerability in devfelixmoira Knowledge Base – Knowledge Base Maker knowledge-base-maker allows Stored XSS.This issue affects Knowledge Base – Knowledge Base Maker: from n/a through <= 1.1.8. | 7.1 | 0.05% | 2025-06-20 | 2026-06-17 |
| CVE-2025-52790 | Cross-Site Request Forgery (CSRF) vulnerability in r-win WP-DownloadCounter wp-downloadcounter allows Stored XSS.This issue affects WP-DownloadCounter: from n/a through <= 1.01. | 7.1 | 0.05% | 2025-06-20 | 2026-06-17 |