更新: 331 个文件 - 2026-04-01 05:00:10

2026-04-01 05:00:10 -07:00
--- a/08-threat-intel/registry/entities/wordpress.json
+++ b/08-threat-intel/registry/entities/wordpress.json
@@ -12,10 +12,10 @@
  "repo_url": "",
  "package_registry": "",
  "marketplace_url": "",
-  "latest_version": "7.9",
+  "latest_version": "51.1.53",
  "version_scheme": "vendor",
  "latest_release_at": "",
-  "latest_release_url": "https://wpscan.com/blog/object-injection-vulnerability-fixed-in-seopress-7-9/",
+  "latest_release_url": "https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-38-authenticated-contributor-dom-based-stored-cross-site-scripting-via-multiple-widgets-vulnerability",
  "version_source_refs": [
    "https://wpscan.com/blog/object-injection-vulnerability-fixed-in-seopress-7-9/",
    "https://patchstack.com/database/wordpress/plugin/ft-rockpress/vulnerability/wordpress-rockpress-plugin-1-0-17-missing-authorization-to-authenticated-subscriber-arbitrary-modification-via-ajax-actions-vulnerability",
@@ -82,11 +82,16 @@
    "https://patchstack.com/database/wordpress/plugin/shared-files/vulnerability/wordpress-shared-files-plugin-1-7-58-contributor-arbitrary-file-download-vulnerability",
    "https://patchstack.com/database/wordpress/plugin/everest-forms-pro/vulnerability/wordpress-everest-forms-pro-plugin-1-9-12-unauthenticated-remote-code-execution-via-calculation-field-vulnerability",
    "https://patchstack.com/database/wordpress/plugin/fluent-booking/vulnerability/wordpress-fluent-booking-plugin-2-0-01-unauthenticated-stored-cross-site-scripting-via-multiple-parameters-vulnerability",
-    "https://patchstack.com/database/wordpress/plugin/gravitysmtp/vulnerability/wordpress-gravity-smtp-plugin-2-1-4-unauthenticated-sensitive-information-exposure-via-rest-api-vulnerability"
+    "https://patchstack.com/database/wordpress/plugin/gravitysmtp/vulnerability/wordpress-gravity-smtp-plugin-2-1-4-unauthenticated-sensitive-information-exposure-via-rest-api-vulnerability",
+    "https://patchstack.com/database/wordpress/plugin/king-addons/vulnerability/wordpress-king-addons-for-elementor-plugin-51-1-38-authenticated-contributor-dom-based-stored-cross-site-scripting-via-multiple-widgets-vulnerability",
+    "https://patchstack.com/database/wordpress/plugin/performance-monitor/vulnerability/wordpress-performance-monitor-plugin-1-0-6-unauthenticated-blind-ssrf-vulnerability",
+    "https://patchstack.com/database/wordpress/plugin/contact-form-entries/vulnerability/wordpress-database-for-contact-form-7-wpforms-elementor-forms-plugin-1-4-9-missing-authorization-to-authenticated-contributor-sensitive-information-exposure-via-shortcode-vulnerability",
+    "https://patchstack.com/database/wordpress/plugin/auto-post-scheduler/vulnerability/wordpress-auto-post-scheduler-plugin-1-84-cross-site-request-forgery-to-stored-cross-site-scripting-via-aps-options-page-vulnerability",
+    "https://patchstack.com/database/wordpress/plugin/ameliabooking/vulnerability/wordpress-amelia-plugin-2-1-2-authenticated-manager-sql-injection-via-sort-parameter-vulnerability"
  ],
  "version_sync_status": "green",
  "security_version_count": 56,
-  "last_version_synced_at": "2026-03-31T09:18:14+00:00",
+  "last_version_synced_at": "2026-04-01T09:20:55+00:00",
  "latest_version_evidence": [
    "WPScan Vulnerability Database",
    "Patchstack Database",