更新: 331 个文件 - 2026-04-01 05:00:10

2026-04-01 05:00:10 -07:00
--- a/08-threat-intel/registry/entities/woocommerce.json
+++ b/08-threat-intel/registry/entities/woocommerce.json
@@ -12,10 +12,10 @@
  "repo_url": "",
  "package_registry": "",
  "marketplace_url": "",
-  "latest_version": "10.6.1",
+  "latest_version": "10.7",
  "version_scheme": "vendor",
  "latest_release_at": "2026-03-12T19:14:25Z",
-  "latest_release_url": "https://github.com/woocommerce/woocommerce/releases/tag/10.6.1",
+  "latest_release_url": "https://developer.woocommerce.com/2026/02/16/hpos-sync-on-read-to-be-disabled-by-default-in-woocommerce-10-7/",
  "version_source_refs": [
    "https://developer.woocommerce.com/2026/02/16/hpos-sync-on-read-to-be-disabled-by-default-in-woocommerce-10-7/",
    "https://patchstack.com/database/wordpress/plugin/wc-carta-docente/vulnerability/wordpress-ilghera-carta-docente-for-woocommerce-plugin-1-5-0-authenticated-administrator-path-traversal-to-arbitrary-file-deletion-via-cert-parameter-vulnerability",
@@ -25,11 +25,12 @@
    "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-to-data-export-vulnerability",
    "https://patchstack.com/database/wordpress/plugin/reviewx/vulnerability/wordpress-reviewx-woocommerce-product-reviews-with-multi-criteria-reminder-emails-google-reviews-schema-more-plugin-2-2-12-unauthenticated-sensitive-information-exposure-vulnerability",
    "https://patchstack.com/database/wordpress/plugin/woo-product-filter/vulnerability/wordpress-product-filter-for-woocommerce-by-wbw-plugin-3-1-2-missing-authorization-to-unauthenticated-filter-data-deletion-via-truncate-table-vulnerability",
-    "https://patchstack.com/database/wordpress/plugin/woo-custom-product-addons-pro/vulnerability/wordpress-woocommerce-custom-product-addons-pro-plugin-5-4-1-unauthenticated-remote-code-execution-via-custom-pricing-formula-vulnerability"
+    "https://patchstack.com/database/wordpress/plugin/woo-custom-product-addons-pro/vulnerability/wordpress-woocommerce-custom-product-addons-pro-plugin-5-4-1-unauthenticated-remote-code-execution-via-custom-pricing-formula-vulnerability",
+    "https://patchstack.com/database/wordpress/plugin/woocommerce-payments/vulnerability/wordpress-woopayments-plugin-10-5-1-missing-authorization-to-unauthenticated-plugin-settings-update-via-save-upe-appearance-ajax-vulnerability"
  ],
  "version_sync_status": "green",
-  "security_version_count": 1,
-  "last_version_synced_at": "2026-03-31T09:18:14+00:00",
+  "security_version_count": 3,
+  "last_version_synced_at": "2026-04-01T09:20:53+00:00",
  "latest_version_evidence": [
    "Woo Developer Advisories",
    "Patchstack Database"