资产安全
商业安全
安全服务
返回- 漏洞ID:
- 漏洞类型:其他
- 发布日期:2026-03-26 00:00:00
- 更新时间:2026-03-27 00:00:00
- CVE编号:CVE-2026-4281
- CNNVD-ID:CNNVD-202603-5491
- 漏洞平台:WTW
- CVSS评分:
暂无
WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台具有在基于PHP和MySQL的服务器上架设个人博客网站的功能。WordPress plugin是一个应用插件。 WordPress plugin FormLift for Infusionsoft Web Forms 7.5.21及之前版本存在安全漏洞,该漏洞源于缺少授权检查,可能导致未经验证的攻击者劫持站点的Infusionsoft连接。
来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/tags/7.5.21/modules/api/infusionsoft-manager.php#L21 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/tags/7.5.21/modules/api/infusionsoft-manager.php#L46 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/tags/7.5.21/modules/api/infusionsoft-manager.php#L62 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/tags/7.5.21/modules/api/infusionsoft-manager.php#L64 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/trunk/modules/api/infusionsoft-manager.php#L21 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/trunk/modules/api/infusionsoft-manager.php#L46 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/trunk/modules/api/infusionsoft-manager.php#L62 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/browser/formlift/trunk/modules/api/infusionsoft-manager.php#L64 来源:plugins.trac.wordpress.org 链接:https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3490212%40formlift&new=3490212%40formlift&sfp_email=&sfph_mail= 来源:www.wordfence.com 链接:https://www.wordfence.com/threat-intel/vulnerabilities/id/a65cc674-a0ea-46b9-b609-b184e1f7ca8e?source=cve
微信扫码关注公众号
