Unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-3649	LightPress Lightbox < 2.3.4 - Contributor+ Stored XSS — LightPress Lightbox	5.4^AI	Medium^AI	2025-05-12
CVE-2025-3597	Firelight Lightbox < 2.3.15 - Contributor+ Stored XSS — Firelight Lightbox	8.9^AI	High^AI	2025-05-12
CVE-2025-3583	Newsletter < 8.7.1 - Admin+ Stored XSS — Newsletter	4.8^AI	Medium^AI	2025-05-05
CVE-2025-3514	SureForms < 1.4.4 - Admin+ Stored XSS — SureForms	4.8^AI	Medium^AI	2025-05-02
CVE-2025-3513	SureForms < 1.4.4 - Admin+ Stored XSS — SureForms	4.8^AI	Medium^AI	2025-05-02
CVE-2025-3504	WP Maps < 4.7.2 - Admin+ Stored XSS — WP Maps	4.8^AI	Medium^AI	2025-05-01
CVE-2025-3502	WP Maps < 4.7.2 - Admin+ Stored XSS — WP Maps	4.8^AI	Medium^AI	2025-05-01
CVE-2025-3503	WP Maps < 4.7.2 - Admin+ Stored XSS — WP Maps	4.8^AI	Medium^AI	2025-05-01
CVE-2024-13381	Calculated Fields Form < 5.2.62 - Admin+ Stored XSS — Calculated Fields Form	4.8^AI	Medium^AI	2025-05-01
CVE-2025-3471	SureForms < 1.4.4 - Contributor+ Settings Update — SureForms	4.3^AI	Medium^AI	2025-04-30
CVE-2024-12273	Calculated Fields Form < 5.2.62 - Admin+ Stored XSS — Calculated Fields Form	4.8^AI	Medium^AI	2025-04-29
CVE-2025-0627	AI Autotagger < 3.30.0 - Admin+ Stored XSS — WordPress Tag, Category, and Taxonomy Manager	4.8^AI	Medium^AI	2025-04-28
CVE-2024-13688	Admin and Site Enhancements (ASE) < 7.6.10 - Password Protection Bypass — Admin and Site Enhancements (ASE)	9.8^AI	Critical^AI	2025-04-28
CVE-2024-9771	WP-Recall < 16.26.12 - Admin+ Stored XSS — WP-Recall	4.8^AI	Medium^AI	2025-04-28
CVE-2025-2907	Order Delivery Date Pro for WooCommerce < 12.3.1 - Unauthenticated Arbitrary Option Update — Order Delivery Date	8.8	-	2025-04-26
CVE-2025-0671	Email Subscribers < 5.7.50 - Admin+ Stored XSS in Template — Icegram Express	4.8	-	2025-04-25
CVE-2025-2558	The Wound <= 0.0.1 - Unauthenticated LFI — the-wound	7.5	-	2025-04-24
CVE-2025-1453	Category Posts Widget < 4.9.20 - Admin+ Stored XSS — Category Posts Widget	4.8	-	2025-04-24
CVE-2025-2594	User Registration & Membership < 4.1.3 - Authentication Bypass — User Registration & Membership	9.8	-	2025-04-22
CVE-2024-13569	Front End Users <= 3.2.32 - Reflected XSS — Front End Users	6.1	-	2025-04-22
CVE-2024-13926	WP-Syntax <= 1.2 - Author+ Potential ReDoS — WP-Syntax	7.5	-	2025-04-19
CVE-2025-2162	MapPress Maps for WordPress < 2.94.10 - Admin+ Stored XSS — MapPress Maps for WordPress	4.8	-	2025-04-18
CVE-2025-1525	Ultimate Dashboard < 3.8.6 - Admin+ Stored XSS — Ultimate Dashboard	4.8^AI	Medium^AI	2025-04-17
CVE-2025-1523	Ultimate Dashboard < 3.8.6 - Admin+ Stored XSS — Ultimate Dashboard	4.8^AI	Medium^AI	2025-04-17
CVE-2025-1524	Ultimate Dashboard < 3.8.6 - Admin+ Stored XSS — Ultimate Dashboard	4.8^AI	Medium^AI	2025-04-17
CVE-2024-13925	Klarna Checkout for WooCommerce < 2.13.5 - DoS via Excessive Logging — Klarna Checkout for WooCommerce	7.5^AI	High^AI	2025-04-17
CVE-2024-11924	Email Subscribers < 5.7.52 - Admin+ Stored XSS — Icegram Express formerly known as Email Subscribers	4.8	-	2025-04-17
CVE-2024-10680	Form Maker by 10Web < 1.15.32 - Admin+ Stored XSS — Form Maker by 10Web	4.8^AI	Medium^AI	2025-04-16
CVE-2024-13610	Simple Social Media Share Buttons < 6.0.0 - Admin+ Stored XSS — Simple Social Media Share Buttons	4.8^AI	Medium^AI	2025-04-15
CVE-2024-13207	Widget for Social Page Feeds < 6.4.2 - Admin+ Stored XSS — Widget for Social Page Feeds	4.8^AI	Medium^AI	2025-04-15

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Unknown — Vulnerabilities & Security Advisories 4138