Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2021-24944 Custom Dashboard & Login Page < 7.0 - Admin+ Stored Cross-Site Scripting — Custom Dashboard & Login Page – AGCACWE-79 4.8 -2022-02-01
CVE-2021-24975 NextScripts: Social Networks Auto-Poster < 4.3.24 - Unauthenticated Stored XSS — NextScripts: Social Networks Auto-PosterCWE-79 6.1 -2022-02-01
CVE-2021-24937 Asset CleanUp < 1.3.8.5 - Reflected Cross-Site Scripting — Asset CleanUp: Page Speed BoosterCWE-79 6.1 -2022-02-01
CVE-2021-24934 Visual CSS Style Editor < 7.5.4 - Reflected Cross-Site Scripting — Visual CSS Style EditorCWE-79 6.1 -2022-02-01
CVE-2021-24900 Ninja Tables < 4.1.8 - Admin+ Stored Cross-Site Cross-Site Scripting — Ninja Tables – Best WP DataTables Plugin for WordPressCWE-79 4.8 -2022-02-01
CVE-2021-24762 Perfect Survey < 1.5.2 - Unauthenticated SQL Injection — Perfect SurveyCWE-89 9.8 -2022-02-01
CVE-2021-24761 Error Log Viewer < 1.1.2 - Arbitrary Text File Deletion via CSRF — Error Log Viewer by BestWebSoftCWE-352 6.5 -2022-02-01
CVE-2021-25097 LabTools <= 1.0 - Subscriber+ Arbitrary Publication Deletion — LabToolsCWE-352 6.5 -2022-02-01
CVE-2021-25083 Registrations for the Events Calendar < 2.7.10 - Reflected Cross-Site Scripting — Registrations for the Events Calendar – Event Registration PluginCWE-79 6.1 -2022-01-24
CVE-2021-25080 Contact Form Entries < 1.1.7 - Unauthenticated Stored Cross-Site Scripting — Contact Form Entries – Contact Form 7, WPforms and moreCWE-79 6.1 -2022-01-24
CVE-2021-25079 Contact Form Entries < 1.2.4 - Reflected Cross-Site Scripting — Contact Form Entries – Contact Form 7, WPforms and moreCWE-79 6.1 -2022-01-24
CVE-2021-25078 Affiliates Manager < 2.9.0 - Unauthenticated Stored Cross-Site Scripting — Affiliates ManagerCWE-79 6.1 -2022-01-24
CVE-2021-25076 WP User Frontend < 3.5.26 - SQL Injection to Reflected Cross-Site Scripting — WP User Frontend – Membership, Profile, Registration & Post Submission Plugin for WordPressCWE-89 8.8 -2022-01-24
CVE-2021-25074 WebP Converter for Media < 4.0.3 - Unauthenticated Open redirect — WebP Converter for Media – Convert WebP and AVIF & Optimize ImagesCWE-601 6.1 -2022-01-24
CVE-2021-25073 WP125 < 1.5.5 - Arbitrary Ad Deletion via CSRF — WP125CWE-352 6.5 -2022-01-24
CVE-2021-25062 Orders Tracking for WooCommerce < 1.1.10 - Reflected Cross-Site Scripting — Orders Tracking for WooCommerceCWE-79 6.1 -2022-01-24
CVE-2021-25049 Mobile Events Manager < 1.4.4 - Admin+ Stored Cross-Site Scripting — Mobile Events ManagerCWE-79 4.8 -2022-01-24
CVE-2021-25045 Asgaros Forum < 1.15.15 - Admin+ SQL Injection via forum_id — Asgaros ForumCWE-89 7.2 -2022-01-24
CVE-2021-25035 Backup and Staging by WP Time Capsule < 1.22.7 - Reflected Cross-Site Scripting — Backup and Staging by WP Time CapsuleCWE-79 6.1 -2022-01-24
CVE-2021-25031 Image Hover Effects Ultimate < 9.7.1 - Reflected Cross-Site Scripting — Image Hover Effects Ultimate (Image Gallery, Effects, Lightbox, Comparison or Magnifier)CWE-79 6.1 -2022-01-24
CVE-2021-25028 Event Tickets < 5.2.2 - Open Redirect — Event TicketsCWE-601 6.1 -2022-01-24
CVE-2021-25017 Tutor LMS < 1.9.12 - Reflected Cross-Site Scripting — Tutor LMS – eLearning and online course solutionCWE-79 6.1 -2022-01-24
CVE-2021-25015 myCred < 2.4 - Reflected Cross-Site Scripting — myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty PluginCWE-79 6.1 -2022-01-24
CVE-2021-25013 Qubely < 1.7.8 - Subscriber+ Arbitrary Post Deletion — Qubely – Advanced Gutenberg BlocksCWE-862 6.5 -2022-01-24
CVE-2021-25008 Code Snippets < 2.14.3 - Reflected Cross-Site Scripting — Code SnippetsCWE-79 6.1 -2022-01-24
CVE-2021-24989 Accept Donations with PayPal < 1.3.4 - Arbitrary Post Deletion via CSRF — Accept Donations with PayPalCWE-352 6.5 -2022-01-24
CVE-2021-24985 Easy Forms for Mailchimp < 6.8.6 - Reflected Cross-Site Scripting — Easy Forms for MailchimpCWE-79 6.1 -2022-01-24
CVE-2021-24976 Smart SEO Tool < 3.0.6 - Reflected Cross-Site Scripting — Smart SEO Tool – SEO优化插件CWE-79 6.1 -2022-01-24
CVE-2021-24974 Product Feed PRO for WooCommerce < 11.0.7 - Subscriber+ Settings Update to Stored XSS — Product Feed PRO for WooCommerceCWE-79 5.4 -2022-01-24
CVE-2021-24968 Ultimate FAQ < 2.1.2 - Subscriber+ Arbitrary FAQ Creation — Ultimate FAQ – WordPress FAQ and Accordion PluginCWE-862 3.5 -2022-01-24

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.