Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2021-25099 Give < 2.17.3 - Unauthenticated Reflected Cross-Site Scripting — GiveWP – Donation Plugin and Fundraising PlatformCWE-79 6.1 -2022-02-21
CVE-2021-25082 Popup Builder < 4.0.7 - LFI to RCE — Popup Builder – Create highly converting, mobile friendly marketing popups.CWE-22 8.8 -2022-02-21
CVE-2021-25075 Duplicate Page or Post < 1.5.1 - Arbitrary Settings Update to Stored XSS — Duplicate Page or PostCWE-862 5.7 -2022-02-21
CVE-2021-25069 WordPress Download Manager < 3.2.34 - Authenticated SQL Injection to Reflected XSS — Download ManagerCWE-89 9.8 -2022-02-21
CVE-2021-25060 Five Star Business Profile and Schema < 2.1.7 - Subscriber+ Page Creation & Settings Update to Stored XSS — Five Star Business Profile and SchemaCWE-79 5.4 -2022-02-21
CVE-2021-25058 The Buffer Button <= 1.0 - Authenticated Stored Cross Site Scripting (XSS) — The Buffer ButtonCWE-79 5.4 -2022-02-21
CVE-2021-25057 Translation Exchange <= 1.0.14 - Authenticated Stored Cross-Site Scripting (XSS) — Translation Exchange – Translate Your WordPress Site In Minutes!CWE-79 5.4 -2022-02-21
CVE-2021-25055 FeedWordPress < 2022.0123 - Reflected Cross-Site Scripting (XSS) — FeedWordPressCWE-79 6.1 -2022-02-21
CVE-2021-24921 Advanced Database Cleaner < 3.0.4 - Reflected Cross-Site Scripting — Advanced Database CleanerCWE-79 6.1 -2022-02-21
CVE-2022-0214 Popup | Custom Popup Builder < 1.3.1 - Unauthenticated Denial of Service — Popup | Custom Popup Builder 7.5 -2022-02-14
CVE-2022-0212 SpiderCalendar <= 1.5.65 - Reflected Cross-Site Scripting — SpiderCalendarCWE-79 6.1 -2022-02-14
CVE-2022-0208 MapPress Maps for WordPress < 2.73.4 - Reflected Cross-Site scripting — MapPress Maps for WordPressCWE-79 6.1 -2022-02-14
CVE-2022-0206 NewStatPress < 1.3.6 - Reflected Cross-Site Scripting — NewStatPressCWE-79 6.1 -2022-02-14
CVE-2022-0200 Themify Portfolio Post < 1.1.7 - Reflected Cross-Site Scripting — Themify Portfolio PostCWE-79 5.4 -2022-02-14
CVE-2022-0193 Complianz - GDPR/CCPA Cookie Consent < 6.0.0 - Reflected Cross-Site Scripting — Complianz – GDPR/CCPA Cookie ConsentCWE-79 6.1 -2022-02-14
CVE-2022-0190 Ad Invalid Click Protector (AICP) < 1.2.6 - Authenticated SQL Injection — Ad Invalid Click Protector (AICP)CWE-89 8.8 -2022-02-14
CVE-2022-0188 Coming Soon & Maintenance Plugin by NiteoThemes < 4.0.19 - Unauthenticated Arbitrary CSS Update — CMP 3.5 -2022-02-14
CVE-2022-0176 PowerPack Lite for Beaver Builder < 1.2.9.3 - Reflected Cross-Site Scripting — PowerPack Lite for Beaver BuilderCWE-79 6.1 -2022-02-14
CVE-2021-25115 WP Photo Album Plus < 8.0.10 - Stored Cross-Site Scripting (XSS) — WP Photo Album PlusCWE-79 5.4 -2022-02-14
CVE-2021-25110 Futurio Extra < 1.6.3 - Subscriber+ User Email Address Disclosure — Futurio ExtraCWE-200 4.3 -2022-02-14
CVE-2021-25109 Futurio Extra < 1.6.3 - Authenticated SQL Injection — Futurio ExtraCWE-89 2.7 -2022-02-14
CVE-2021-25107 Form Store to DB < 1.1.1 - Unauthenticated Stored Cross-Site Scripting — Form Store to DBCWE-79 6.1 -2022-02-14
CVE-2021-25050 Remove Footer Credit < 1.0.11 - Admin+ Stored Cross-Site Scripting — Remove Footer CreditCWE-79 4.8 -2022-02-14
CVE-2021-25033 Noptin < 1.6.5 - Open Redirect — WordPress Newsletter Plugin – NoptinCWE-601 6.1 -2022-02-14
CVE-2021-25018 PPOM for WooCommerce < 24.0 - Subscriber+ Settings Update to Stored XSS — PPOM for WooCommerceCWE-862 5.4 -2022-02-14
CVE-2021-25014 Ibtana < 1.1.4.9 - Subscriber+ Settings Update to Stored XSS — Ibtana – WordPress Website BuilderCWE-862 3.5 -2022-02-14
CVE-2021-24904 Mortgage Calculators WP < 1.56 - Admin+ Stored Cross-Site Scripting — Mortgage Calculators WPCWE-79 4.8 -2022-02-14
CVE-2021-24874 Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue < 3.1.31 - Reflected Cross-Site Scripting — Newsletter, SMTP, Email marketing and Subscribe forms by SendinblueCWE-79 6.1 -2022-02-14
CVE-2021-24446 Remove Footer Credit < 1.0.6 - CSRF to Stored Cross-Site Scripting — Remove Footer CreditCWE-352 5.4 -2022-02-14
CVE-2022-0149 WooCommerce – Store Exporter < 2.7.1 - Reflected Cross-Site Scripting (XSS) — WooCommerce – Store ExporterCWE-79 6.1 -2022-02-07

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.