Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-6064 PayHere Payment Gateway < 2.2.12 - Unauthenticated Log Data Disclosure — PayHere Payment Gateway 7.5 -2024-01-01
CVE-2023-5991 Hotel Booking Lite < 4.8.5 - Unauthenticated Arbitrary File Download & Deletion — Hotel Booking Lite 9.8AICriticalAI2023-12-26
CVE-2023-6114 Duplicator < 1.5.7.1; Duplicator Pro < 4.5.14.2 - Unauthenticated Sensitive Data Exposure — Duplicator 7.5AIHighAI2023-12-26
CVE-2023-5980 BSK Forms Blacklist < 3.7 - Admin+ Stored Cross-Site Scripting — BSK Forms Blacklist 4.8AIMediumAI2023-12-26
CVE-2023-6155 Quiz Maker < 6.4.9.5 - Unauthenticated Email Address Disclosure — Quiz Maker 5.3AIMediumAI2023-12-26
CVE-2023-6250 BestWebSoft's Like & Share < 2.74 - Unauthenticated Password Protected Post Read — BestWebSoft's Like & Share 5.3AIMediumAI2023-12-26
CVE-2023-5939 rtMedia for WordPress, BuddyPress and bbPress < 4.6.16 - Admin+ RCE — rtMedia for WordPress, BuddyPress and bbPress 7.2AIHighAI2023-12-26
CVE-2023-5644 WP Mail Log < 1.1.3 – Incorrect Authorization in REST API Endpoints — WP Mail Log 5.4AIMediumAI2023-12-26
CVE-2023-5672 WP Mail Log < 1.1.3 – Contributor+ LFI in wml_logs/send_mail endpoint — WP Mail Log 6.5AIMediumAI2023-12-26
CVE-2023-5203 WP Sessions Time Monitoring Full Automatic < 1.0.9 - Unauthenticated SQL injection — WP Sessions Time Monitoring Full Automatic 7.5AIHighAI2023-12-26
CVE-2023-5645 WP Mail Log < 1.1.3 – Contributor+ SQL Injection in wml_logs endpoint — WP Mail Log 8.8AIHighAI2023-12-26
CVE-2023-6268 JSON Content Importer < 1.5.4 - Reflected XSS — JSON Content Importer 6.1AIMediumAI2023-12-26
CVE-2023-5673 WP Mail Log < 1.1.3 – Contributor+ Arbitrary File Upload to RCE — WP Mail Log 9.8AICriticalAI2023-12-26
CVE-2023-5674 WP Mail Log < 1.1.3 – Contributor+ SQL Injection in wml_logs/send_mail endpoint — WP Mail Log 8.8AIHighAI2023-12-26
CVE-2023-6166 Quiz Maker < 6.4.9.5 - Reflected Cross-Site Scripting — Quiz Maker 6.1AIMediumAI2023-12-26
CVE-2023-5931 rtMedia for WordPress, BuddyPress and bbPress < 4.6.16 - Subscriber+ RCE — rtMedia for WordPress, BuddyPress and bbPress 8.8AIHighAI2023-12-26
CVE-2023-5882 WP All Export (Free < 1.4.1, Pro < 1.8.6) - Remote Code Execution via CSRF — Export any WordPress data to XML/CSV 8.8AIHighAI2023-12-18
CVE-2023-4724 WP All Export (Free < 1.4.0, Pro < 1.8.6) - Admin+ RCE — Export any WordPress data to XML/CSV 9.8AICriticalAI2023-12-18
CVE-2023-5949 SmartCrawl WordPress SEO checker < 3.8.3 - Unauthenticated Password Protected Post Disclosure — SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer 7.5 -2023-12-18
CVE-2023-6295 so-widgets-bundle < 1.51.0 - Admin+ Local File Inclusion — SiteOrigin Widgets Bundle 4.9AIMediumAI2023-12-18
CVE-2023-6077 Slider - Ultimate Responsive Image Slider < 3.5.12 - Subscriber+ Arbitrary Post Access — Slider 6.5AIMediumAI2023-12-18
CVE-2023-6289 Swift Performance Lite <= 2.3.6.14 - Unauthenticated Configuration Export — Swift Performance Lite 5.3 -2023-12-18
CVE-2023-5348 Product Catalog Enquiry for WooCommerce < 5.0.3 - Unauthenticated Stored XSS via Arbitrary Setting Update — Product Catalog Mode For WooCommerce 6.1AIMediumAI2023-12-18
CVE-2023-5886 WP All Export (Free < 1.4.1, Pro < 1.8.6) - Author+ PHAR Deserialization via CSRF — Export any WordPress data to XML/CSV 8.8AIHighAI2023-12-18
CVE-2023-4311 Vrm 360 3D Model Viewer <= 1.2.1 - Contributor+ Arbitrary File Upload Leading to RCE — Vrm 360 3D Model Viewer 9.8AICriticalAI2023-12-18
CVE-2023-6065 Quttera Web Malware Scanner < 3.4.2.1 - Directory Listing to Sensitive Data Exposure — Quttera Web Malware Scanner 5.3 -2023-12-18
CVE-2023-6272 Theme My Login 2FA < 1.2 - Lack of Rate Limiting — tml-2fa 9.8AICriticalAI2023-12-18
CVE-2023-5005 Autocomplete Location field Contact Form 7 < 3.0 - Admin+ Store Cross-Site Scripting — Autocomplete Location field Contact Form 7 4.8AIMediumAI2023-12-18
CVE-2023-6222 Quttera Web Malware Scanner < 3.4.2.1 - Admin+ Path Traversal — Quttera Web Malware Scanner 4.9AIMediumAI2023-12-18
CVE-2023-6203 The Events Calendar < 6.2.8.1 - Unauthenticated Arbitrary Password Protected Post Read — The Events Calendar 7.5AIHighAI2023-12-18

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.