Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2022-0376 User Meta < 2.4.3 - Admin+ Stored Cross-Site Scripting — User Meta – User Profile Builder and User management pluginCWE-79 4.8 -2022-05-30
CVE-2022-1203 Content Mask < 1.8.4.1 - Subscriber+ Arbitrary Options Update — Content Mask 3.5 -2022-05-30
CVE-2022-1558 Curtain <= 1.0.2 - Admin+ Stored Cross-Site Scripting — CurtainCWE-79 4.8 -2022-05-23
CVE-2022-1547 Check & Log email < 1.0.6 - Reflected Cross-Site Scripting — Check & Log EmailCWE-79 6.1 -2022-05-23
CVE-2022-1320 Sliderby10Web < 1.2.52 - Admin+ Stored Cross-Site Scripting — Sliderby10WebCWE-79 4.8 -2022-05-23
CVE-2022-1298 Tabs Responsive < 2.2.8 - Editor+ Stored Cross-Site Scripting — TabsCWE-79 4.8 -2022-05-23
CVE-2022-1268 Donate Extra <= 2.02 - Reflected Cross-Site Scripting — Donate ExtraCWE-79 6.1 -2022-05-23
CVE-2022-1221 Gwyn's Imagemap Selector <= 0.3.3 - Reflected Cross-Site Scripting — Gwyn's Imagemap SelectorCWE-79 6.1 -2022-05-23
CVE-2022-1218 Domain Replace <= 1.3.8 - Reflected Cross-Site Scripting — Domain ReplaceCWE-79 6.1 -2022-05-23
CVE-2022-1192 Turn off all comments <= 1.0 - Reflected Cross-Site Scripting — Turn off all commentsCWE-79 6.1 -2022-05-23
CVE-2022-1093 WP Meta SEO < 4.4.7 - Admin+ Stored Cross-Site Scripting via breadcrumbs — WP Meta SEOCWE-79 4.8 -2022-05-23
CVE-2022-1014 WP Contacts Manager <= 2.2.4 - Unauthenticated SQLi — WP Contacts ManagerCWE-89 9.8 -2022-05-23
CVE-2022-0781 Nirweb support < 2.8.2 - Unauthenticated SQLi — Nirweb supportCWE-89 9.8 -2022-05-23
CVE-2022-0346 Google XML Sitemap Generator < 2.0.4 - Reflected Cross-Site Scripting — XML Sitemap Generator for GoogleCWE-79 6.1 -2022-05-23
CVE-2022-1560 Amministrazione Aperta < 3.8 - Admin+ LFI — Amministrazione ApertaCWE-22 8.1 -2022-05-16
CVE-2022-1559 Clipr <= 1.2.3 - Admin+ Stored Cross-Site Scripting — CliprCWE-79 4.8 -2022-05-16
CVE-2022-1557 ULeak Security & Monitoring <= 1.2.3 - Subscriber+ Stored Cross-Site Scripting — ULeak Security & Monitoring PluginCWE-79 5.4 -2022-05-16
CVE-2022-1512 ScrollReveal.js Effects <= 1.2 - Admin+ Stored Cross-Site Scripting — ScrollReveal.js EffectsCWE-79 4.8 -2022-05-16
CVE-2022-1465 WPC Smart Wishlist for WooCommerce < 2.9.9 - Reflected Cross-Site Scripting — WPC Smart Wishlist for WooCommerceCWE-79 6.1 -2022-05-16
CVE-2022-1455 Call Now Button < 1.1.2 - Reflected Cross-Site Scripting — Call Now ButtonCWE-79 6.1 -2022-05-16
CVE-2022-1436 WPCargo Track & Trace < 6.9.5 - Reflected Cross Site Scripting — WPCargo Track & TraceCWE-79 6.1 -2022-05-16
CVE-2022-1435 WPCargo Track & Trace < 6.9.5 - Admin+ Stored Cross Site Scripting — WPCargo Track & TraceCWE-79 4.8 -2022-05-16
CVE-2022-1425 WPQA < 5.2 - Subscriber+ Private Message Disclosure via IDOR — WPQA Builder PluginCWE-639 6.5 -2022-05-16
CVE-2022-1418 Social Stickers <= 2.2.9 - Stored Cross-Site Scripting via CSRF — Social StickersCWE-79 6.1 -2022-05-16
CVE-2022-1409 VikBooking Hotel Booking Engine & PMS < 1.5.8 - Admin+ PHP File Upload — VikBooking Hotel Booking Engine & PMSCWE-434 7.2 -2022-05-16
CVE-2022-1408 VikBooking Hotel Booking Engine & PMS < 1.5.8 - Admin+ Stored Cross-Site Scripting — VikBooking Hotel Booking Engine & PMSCWE-79 4.8 -2022-05-16
CVE-2022-1407 VikBooking Hotel Booking Engine & PMS < 1.5.7 - Stored Cross-Site Scripting via CSRF — VikBooking Hotel Booking Engine & PMSCWE-352 6.5 -2022-05-16
CVE-2022-1398 External Media without Import <= 1.1.2 - Subscriber+ Blind SSRF — External Media without ImportCWE-918 6.5 -2022-05-16
CVE-2022-1393 WP Subtitle < 3.4.1 - Contributor+ Stored Cross-Site Scripting — WP SubtitleCWE-79 5.4 -2022-05-16
CVE-2022-1386 Fusion Builder < 3.6.2 - Unauthenticated SSRF — Fusion BuilderCWE-918 9.1 -2022-05-16

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.