Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-6029 EazyDocs < 2.3.6 - Unauthenticated Arbitrary Posts Deletion and Document Management — EazyDocs 7.5 -2024-01-15
CVE-2023-6843 easy.jobs < 2.4.7 - Subscriber+ Arbitrary Settings Update — easy.jobs- Best Recruitment Plugin for Job Board Listing, Manager, Career Page for Elementor & Gutenberg 4.3 -2024-01-15
CVE-2023-6941 Keap Official Opt-in Forms <= 1.0.11 - Admin+ Stored XSS — Keap Official Opt-in Forms 4.8 -2024-01-15
CVE-2023-6049 Estatik Real Estate Plugin < 4.1.1 - Unauthenticated PHP Object Injection — Estatik Real Estate Plugin 9.8 -2024-01-15
CVE-2023-6532 WP Blogs' Planetarium <= 1.0 - Settings Update via CSRF — WP Blogs' Planetarium 4.3AIMediumAI2024-01-08
CVE-2023-6505 Prime Mover < 1.9.3 - Directory Listing to Sensitive Data Exposure — Migrate WordPress Website & Backups 5.3AIMediumAI2024-01-08
CVE-2023-6845 CommentTweets <= 0.6 - Settings Update via CSRF — CommentTweets 6.5AIMediumAI2024-01-08
CVE-2023-6750 Clone < 2.4.3 - Unauthenticated Backup Download — Clone 5.3AIMediumAI2024-01-08
CVE-2023-6140 Essential Real Estate < 4.4 - Subscriber+ Arbitrary File Upload — Essential Real Estate 8.8AIHighAI2024-01-08
CVE-2023-5911 WP Custom Cursors <= 3.2 - Admin+ Stored XSS — WP Custom Cursors | WordPress Cursor Plugin 4.8AIMediumAI2024-01-08
CVE-2023-6141 Essential Real Estate < 4.4.0 - Subscriber+ Stored XSS — Essential Real Estate 5.4AIMediumAI2024-01-08
CVE-2023-5235 Ovic Responsive WPBakery < 1.2.9 - Subscriber+ Option Update — Ovic Responsive WPBakery 4.3AIMediumAI2024-01-08
CVE-2023-6528 Slider Revolution < 6.6.19 - Author+ Insecure Deserialization leading to RCE — Slider Revolution 8.8AIHighAI2024-01-08
CVE-2023-6383 Debug Log Manager < 2.3.0 - Sensitive Logs Exposure — Debug Log Manager 5.3AIMediumAI2024-01-08
CVE-2018-25095 Duplicator < 1.3.0 - Unauthenticated RCE — Duplicator 9.8AICriticalAI2024-01-08
CVE-2023-5957 Ni Purchase Order(PO) For WooCommerce <= 1.2.1 - Admin+ File Upload to Remote Code Execution — Ni Purchase Order(PO) For WooCommerce 7.2AIHighAI2024-01-08
CVE-2023-6139 Essential Real Estate < 4.4.0 - Subscriber+ Denial of Service via Arbitrary Option Update — Essential Real Estate 6.5AIMediumAI2024-01-08
CVE-2023-6627 WP Go Maps < 9.0.28 - Unauthenticated Stored XSS — WP Go Maps (formerly WP Google Maps) 6.1AIMediumAI2024-01-08
CVE-2023-6042 Getwid < 2.0.3 - Unauthenticated Arbitrary Email Sending to Admin — Getwid 9.8AICriticalAI2024-01-08
CVE-2023-6161 WP Crowdfunding < 2.1.9 - Reflected XSS — WP Crowdfunding 6.1AIMediumAI2024-01-08
CVE-2023-6529 WP VR < 8.3.15 - Unauthenticated Plugin Downgrade leading to XSS — WP VR 6.1AIMediumAI2024-01-08
CVE-2023-6555 Email Subscription Popup < 1.2.20 - Reflected XSS — Email Subscription Popup 6.1AIMediumAI2024-01-08
CVE-2023-6621 Post SMTP < 2.8.7 - Reflected Cross-Site Scripting — POST SMTP 6.1AIMediumAI2024-01-03
CVE-2023-6113 WP Staging (Free < 3.1.3, Pro < 5.1.3) - Unauthenticated Backup Download — WP STAGING WordPress Backup Plugin 7.5 -2024-01-01
CVE-2023-5877 affiliate-toolkit < 3.4.3 - Unauthenticated SSRF — affiliate-toolkit 9.1 -2024-01-01
CVE-2023-6037 WP TripAdvisor Review Slider < 11.9 - Admin+ Stored XSS — WP TripAdvisor Review Slider 4.8 -2024-01-01
CVE-2023-6000 Popup Builder < 4.2.3 - Unauthenticated Stored XSS — Popup Builder 5.4 -2024-01-01
CVE-2023-6485 Html5 Video Player < 2.5.19 - Subscriber+ Stored XSS — Html5 Video Player 5.4 -2024-01-01
CVE-2023-6271 Backup Migration Staging < 1.3.6 - Sensitive Data Exposure — Backup Migration 7.5 -2024-01-01
CVE-2023-6421 Download Manager < 3.2.83 - Unauthenticated Protected File Download Password Leak — Download Manager 7.5 -2024-01-01

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.