Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2022-1421 Discy < 5.2 - Settings Update via CSRF — DiscyCWE-352 6.5 -2022-06-06
CVE-2022-1394 Photo Gallery < 1.6.4 - Admin+ Stored Cross-Site Scripting — Photo Gallery by 10Web – Mobile-Friendly Image GalleryCWE-79 4.8 -2022-06-06
CVE-2022-1241 Ask Me < 6.8.2 - Reflected Cross-Site Scripting — Ask meCWE-79 6.1 -2022-06-06
CVE-2022-1005 WP Statistics < 13.2.2 - Reflected Cross-Site Scripting — WP StatisticsCWE-79 6.1 -2022-06-06
CVE-2022-0788 WP Fundraising Donation and Crowdfunding Platform < 1.5.0 - Unauthenticated SQLi — WP Fundraising Donation and Crowdfunding PlatformCWE-89 9.8 -2022-06-06
CVE-2022-0779 User Meta < 2.4.4 - Subscriber+ Local File Enumeration via Path Traversal — User Meta – User Profile Builder and User management pluginCWE-22 6.5 -2022-06-06
CVE-2022-1646 Simple Real Estate Pack <= 1.4.8 - Admin+ Stored Cross Site Scripting — Simple Real Estate PackCWE-79 4.8 -2022-05-30
CVE-2022-1645 Amazon Link <= 3.2.10 - Admin+ Stored Cross-Site Scripting — Amazon LinkCWE-79 4.8 -2022-05-30
CVE-2022-1644 Call&Book Mobile Bar <= 1.2.2 - Admin+ Stored Cross Site Scripting — Call&Book Mobile BarCWE-79 4.8 -2022-05-30
CVE-2022-1643 Birthdays Widget <= 1.7.18 - Admin+ Stored Cross Site Scripting — Birthdays WidgetCWE-79 4.8 -2022-05-30
CVE-2022-1611 Bulk Page Creator < 1.1.4 - Arbitrary Page Creation via CSRF — Bulk Page CreatorCWE-352 8.8 -2022-05-30
CVE-2022-1589 Change wp-admin Login < 1.1.0 - Unauthenticated Arbitrary Settings Update — Change wp-admin login 7.5 -2022-05-30
CVE-2022-1583 External Links in New Window / New Tab < 1.43 - Tabnabbing — External Links in New Window / New TabCWE-1022 6.5 -2022-05-30
CVE-2022-1582 External Links in New Window / New Tab < 1.43 - Unauthenticated Stored Cross-Site Scripting — External Links in New Window / New TabCWE-79 6.1 -2022-05-30
CVE-2022-1568 Team Members < 5.1.1 - Admin+ Stored Cross-Site Scripting — Team MembersCWE-79 4.8 -2022-05-30
CVE-2022-1566 Quotes llama < 1.0.0 - Admin+ Stored Cross-Site Scripting — Quotes llamaCWE-79 4.8 -2022-05-30
CVE-2022-1564 Form Maker By 10Web < 1.14.12 - Admin+ Stored Cross-Site Scripting — Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form BuilderCWE-79 4.8 -2022-05-30
CVE-2022-1562 Enable SVG < 1.4.0 - Author+ Stored Cross Site Scripting via SVG — Enable SVGCWE-79 5.4 -2022-05-30
CVE-2022-1556 StaffList < 3.1.5 - Admin+ SQLi — StaffListCWE-89 9.8 -2022-05-30
CVE-2022-1542 HPB Dashboard <= 1.3.1 - Admin+ Stored Cross Site Scripting — hpb DashboardCWE-79 4.8 -2022-05-30
CVE-2022-1528 VikBooking < 1.5.9 - Reflected Cross-Site Scripting — VikBooking Hotel Booking Engine & PMSCWE-79 6.1 -2022-05-30
CVE-2022-1527 WP 2FA < 2.2.1 - Reflected Cross-Site Scripting — WP 2FA – Two-factor authentication for WordPressCWE-79 6.1 -2022-05-30
CVE-2022-1456 Poll Maker < 4.0.2 - Admin+ Stored Cross-Site Scripting — Poll MakerCWE-79 4.8 -2022-05-30
CVE-2022-1395 Easy FAQ with Expanding Text <= 3.2.8.3.1 - Admin+ Stored Cross-Site Scripting — Easy FAQ with Expanding TextCWE-79 4.8 -2022-05-30
CVE-2022-1387 No Future Posts <= 1.4 - Admin+ Stored Cross-Site Scripting — No Future PostsCWE-79 4.8 -2022-05-30
CVE-2022-1299 Slideshow <= 2.3.1 - Admin+ Stored Cross-Site Scripting — SlideshowCWE-79 4.8 -2022-05-30
CVE-2022-1294 IMDB info box <= 2.0 - Admin+ Stored Cross-Site Scripting — IMDB Info BoxCWE-79 4.8 -2022-05-30
CVE-2022-1275 BannerMan <= 0.2.4 - Multiple Admin+ Stored Cross-Site Scripting — BannerManCWE-79 4.8 -2022-05-30
CVE-2022-1009 Smush < 3.9.9 - Admin+ Reflected Cross-Site Scripting — Smush – Lazy Load Images, Optimize & Compress ImagesCWE-79 6.1 -2022-05-30
CVE-2022-0642 JivoChat < 1.3.5.4 - Stored Cross-Site Scripting via CSRF — JivoChat Live Chat – WP live chat plugin for WordPressCWE-352 5.4 -2022-05-30

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.