Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Published
CVE-2021-24933	Dynamic Widgets <= 1.5.16 - Reflected Cross-Site Scripting — Dynamic WidgetsCWE-79	5.4	-	2022-02-28
CVE-2021-24920	StatCounter < 2.0.7 - Admin+ Stored Cross-Site Scripting — StatCounter – Free Real Time Visitor StatsCWE-79	4.8	-	2022-02-28
CVE-2021-24913	Logo Showcase with Slick Slider < 2.0.1 - Arbitrary Media Title/Description/Alt Text/URL Update via CSRF — Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo GridCWE-352	4.3	-	2022-02-28
CVE-2021-24903	GRAND FlaGallery <= 6.1.2 - Admin+ Stored Cross-Site Scripting — Album and Image Gallery with Lightbox – Flagallery Photo PortfolioCWE-79	4.8	-	2022-02-28
CVE-2021-24901	Security Audit <= 1.0.0 - Admin+ Stored Cross Site Scripting — Security AuditCWE-79	4.8	-	2022-02-28
CVE-2021-24898	EditableTable <= 0.1.4 - Admin+ Stored Cross-Site Scripting — Editable Table Simple Fast FrontEnd From Sql tablesCWE-79	4.8	-	2022-02-28
CVE-2021-24864	WP Cloudy < 4.4.9 - Admin+ SQL Injection — WP Cloudy, weather pluginCWE-89	8.8	-	2022-02-28
CVE-2021-24823	Support Board < 3.3.6 - Arbitrary File Deletion via CSRF — Support BoardCWE-352	8.1	-	2022-02-28
CVE-2021-24820	Cost Calculator <= 1.6 - Authenticated Local File Inclusion — Cost CalculatorCWE-22	8.1	-	2022-02-28
CVE-2021-24803	Core Tweaks WP Setup <= 4.1 - Arbitrary Admin Account Creation / Admin Email Update via CSRF — Core Tweaks WP SetupCWE-352	8.8	-	2022-02-28
CVE-2021-24730	Logo Showcase with Slick Slider < 1.2.5 - Subscriber+ Arbitrary Media Title/Description/Alt Text/URL Update — Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo GridCWE-862	4.3	-	2022-02-28
CVE-2021-24704	Orange Form <= 1.0 - SQL Injection via CSRF — Orange FormCWE-89	6.8	-	2022-02-28
CVE-2021-24689	Contact Forms - Drag & Drop Contact Form Builder <= 1.0.5 - Admin+ Arbitrary System File Read — Contact Forms – Drag & Drop Contact Form BuilderCWE-22	4.9	-	2022-02-28
CVE-2021-24688	Orange Form <= 1.0.1 - Unauthenticated Arbitrary Post Deletion — Orange FormCWE-284	4.3	-	2022-02-28
CVE-2020-36510	15Zine < 3.3.0 - Reflected Cross-Site Scripting — 15ZineCWE-79	6.1	-	2022-02-28
CVE-2022-0313	Float Menu < 4.3.1 - Arbitrary Menu Deletion via CSRF — Float menu – awesome floating side menuCWE-352	4.3	-	2022-02-21
CVE-2022-0288	Ad Inserter < 2.7.10 - Reflected Cross-Site Scripting — Ad Inserter – Ad Manager & AdSense AdsCWE-79	6.1	-	2022-02-21
CVE-2022-0279	AnyComment < 0.2.18 - Comment Rating Increase/Decrease via Race Condition — AnyCommentCWE-362	3.1	-	2022-02-21
CVE-2022-0255	Database Backup for WordPress < 2.5.1 - Admin+ SQL Injection — Database Backup for WordPressCWE-89	7.2	-	2022-02-21
CVE-2022-0252	Give < 2.17.3 - Reflected Cross-Site Scripting via Import Tool — GiveWP – Donation Plugin and Fundraising PlatformCWE-79	6.1	-	2022-02-21
CVE-2022-0234	WOOCS < 1.3.7.5 - Reflected Cross-Site Scripting — WOOCS – Currency Switcher for WooCommerce. Professional and Free multi currency plugin – Pay in selected currencyCWE-79	6.1	-	2022-02-21
CVE-2022-0228	Popup Builder < 4.0.7 - Admin+ SQL Injection — Popup Builder – Create highly converting, mobile friendly marketing popups.CWE-89	7.2	-	2022-02-21
CVE-2022-0211	Shield Security < 13.0.6 - Admin+ Stored Cross-Site Scripting — Shield Security – Scanners, Security Hardening, Brute Force Protection & FirewallCWE-79	4.8	-	2022-02-21
CVE-2022-0199	Coming soon and Maintenance mode < 3.6.8 - Arbitrary Email Sending to Subscribed Users via CSRF — Coming soon and Maintenance modeCWE-352	4.3	-	2022-02-21
CVE-2022-0186	Image Photo Gallery Final Tiles Grid < 3.5.3 - Contributor+ Stored Cross-Site Scripting — Image Photo Gallery Final Tiles GridCWE-79	5.4	-	2022-02-21
CVE-2022-0164	Coming soon and Maintenance mode < 3.6.7 - Subscriber+ Arbitrary Email Sending to Subscribed Users — Coming soon and Maintenance mode	4.3	-	2022-02-21
CVE-2022-0134	AnyComment < 0.2.18 - Arbitrary HyperComments Import/Revert via CSRF — AnyCommentCWE-352	8.8	-	2022-02-21
CVE-2021-4208	ExportFeed <= 2.0.1.0 - Admin+ SQL Injection — ExportFeed: List WooCommerce Products on eBay StoreCWE-89	7.2	-	2022-02-21
CVE-2021-25101	Anti-Malware Security and Brute-Force Firewall < 4.20.94 - Admin+ Reflected Cross-Site Scripting — Anti-Malware Security and Brute-Force FirewallCWE-79	4.8	-	2022-02-21
CVE-2021-25100	Give < 2.17.3 - Reflected Cross-Site Scripting via Donation Forms Dashboard — GiveWP – Donation Plugin and Fundraising PlatformCWE-79	6.1	-	2022-02-21

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Unknown — Vulnerabilities & Security Advisories 4139