Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-2707 Appointment booking addon for Gravity Forms <= 1.9.5.1 - Admin+ Stored XSS — gAppointments 4.8 -2023-11-27
CVE-2023-5942 Medialist < 1.4.1 - Contributor+ Stored XSS — Medialist 5.4 -2023-11-27
CVE-2023-5958 POST SMTP Mailer < 2.7.1 - Unauthenticated Cross-site Scripting — POST SMTP Mailer 6.1 -2023-11-27
CVE-2023-4922 WPB Show Core <= 2.2 - Unauthenticated Local File Inclusion — wpb-show-core 9.1 -2023-11-27
CVE-2023-4514 Mmm Simple File List <= 2.3 - Contributor+ Stored XSS — Mmm Simple File List 5.4 -2023-11-27
CVE-2023-5974 WPB Show Core <= 2.2 - Unauthenticated Server Side Request Forgery — wpb-show-core 9.1 -2023-11-27
CVE-2023-5737 WordPress Backup & Migration < 1.4.4 - Subscriber+ Plugin Settings Update — WordPress Backup & Migration 4.3 -2023-11-27
CVE-2023-5325 Woocommerce Vietnam Checkout < 2.0.6 - Unauthenticated Stored XSS — Woocommerce Vietnam Checkout 6.1 -2023-11-27
CVE-2023-5845 Simple Social Buttons < 5.1.1 - Unauthenticated Password Protected Post Access — Simple Social Media Share Buttons 5.3 -2023-11-27
CVE-2023-4297 Mmm Simple File List <= 2.3 - Subscriber+ Arbitrary Directory Listing — Mmm Simple File List 6.5 -2023-11-27
CVE-2023-5653 WassUp Real Time Analytics <= 1.9.4.5 - Unauthenticated Stored XSS — WassUp Real Time Analytics 6.1 -2023-11-27
CVE-2023-5604 Asgaros Forum < 2.7.1 - Unauthenticated Arbitrary File Upload — Asgaros Forum 9.8 -2023-11-27
CVE-2023-5239 Security & Malware scan by CleanTalk < 2.121 - IP Spoofing — Security & Malware scan by CleanTalk 7.5 -2023-11-27
CVE-2023-5560 WP-UserOnline < 2.88.3 - Unauthenticated Stored XSS — WP-UserOnline 6.1 -2023-11-27
CVE-2023-4252 EventPrime <= 3.2.9 - Booking Pricing Bypass — EventPrime 5.3 -2023-11-27
CVE-2023-5906 Job Manager & Career < 1.4.4 - Directory listing to Sensitive Data Exposure — Job Manager & Career 7.5 -2023-11-27
CVE-2023-4642 kk Star Ratings < 5.4.6 - Rating Tampering via Race Condition — kk Star Ratings 5.3 -2023-11-27
CVE-2023-5209 Bookly < 22.5 - Admin+ Stored XSS — WordPress Online Booking and Scheduling Plugin 4.8 -2023-11-27
CVE-2023-5343 Popup Box < 3.7.9 - Admin+ Stored XSS — Popup box 4.8AIMediumAI2023-11-20
CVE-2023-5640 Article Analytics <= 1.0 - Unauthenticated SQL injection — Article analytics 9.8AICriticalAI2023-11-20
CVE-2023-5119 Forminator and Forminator Pro < 1.27.0 - Admin+ Stored Cross-Site Scripting — Forminator 4.8AIMediumAI2023-11-20
CVE-2023-5509 myStickymenu < 2.6.5 - Subscriber+ Arbitrary Form Leads Deletion — Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any Theme 8.8AIHighAI2023-11-20
CVE-2023-5610 Seraphinite Accelerator < 2.20.29 - Authenticated Arbitrary Redirect — Seraphinite Accelerator 6.1AIMediumAI2023-11-20
CVE-2023-5651 WP Hotel Booking < 2.0.8 - Subscriber+ Arbitrary Post Deletion — WP Hotel Booking 6.5AIMediumAI2023-11-20
CVE-2023-5799 WP Hotel Booking < 2.0.9 - Contributor+ Arbitrary Post Deletion — WP Hotel Booking 6.5AIMediumAI2023-11-20
CVE-2023-5609 Seraphinite Accelerator < 2.20.29 - Reflected XSS — Seraphinite Accelerator 6.1AIMediumAI2023-11-20
CVE-2023-5652 WP Hotel Booking < 2.0.8 - Unauthenticated SQLi — WP Hotel Booking 9.8AICriticalAI2023-11-20
CVE-2023-4808 WP Post Popup <= 3.7.3 - Admin+ Stored XSS — WP Post Popup 4.8AIMediumAI2023-11-20
CVE-2023-4799 Magic Embeds < 3.1.2 - Contributor+ Stored XSS via shortcode — Magic Embeds 5.4AIMediumAI2023-11-20
CVE-2023-4824 WooHoo Newspaper Magazine Theme <= 2.5.3 - Settings Update via CSRF — Woohoo 6.5AIMediumAI2023-11-20

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.