本期出现漏洞的插件比较多,包括使用量较大的 Advanced Custom Fields、Better Search and Replace、Duplicator、Download Manager 等,建议大家一定要及时更新到最新版本。
WordPress 插件漏洞 – 已修复
Advanced Custom Fields
Better Search and Replace
Duplicator
Download Manager
Social Chat
Social Slider Feed
Feed Them Social
Simple Banner
WP phpMyAdmin
Simple Job Board
Product Slider for WooCommerce
Automations By Autonami
Directorist
WP Coder
WordPress Team Members Showcase
WP Sticky Button
Simple SEO
Lana Downloads Manager
Automatic pages for Privacy Policy, Terms, About, Contact us
Student Result or Employee Database
Add Hierarchy (parent) to post
Debug Bar
Remove tabs and fields from WooCommerce
Ninja Job Board
Profile & Dashboard fields
Breadcrumbs Shortcode
External url as post Featured Image
Require & Limit Categories, Tags, Featured Image and taxonomies
Download buttons for Youtube videos
Redirect By Cookie
Images Asynchronous Load
Comment Fields [Modify/Disable/Remove]
LinkWorth Plugin
WPQA
Highlight Searched Terms in Results
API info for Plugins & Themes from WP.ORG
Add Custom Post Type into Post Query
All custom fields & groups
Rezgo Online Booking
Built-in Widgets Query extend
Find Slow Functions & Actions & Filters & Hooks (Debug Bar)
WordPress 插件漏洞 – 未修复
Coming Soon – Under Construction
Yotpo Reviews for WooCommerce
Auto-hyperlink URLs
Floating Div
Enable SVG, WebP & ICO Upload
WPGraphQL WooCommerce
Transposh WordPress Translation
WP Edit Menu
BxSlider WP
VR Calendar
GS Testimonial Slider
WordPress 主题漏洞
Ask Me < 6.8.4 – CSRF in Edit Profile 要了解更多细节,请阅读原文链接。
