Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-2803 Ultimate Addons for Contact Form 7 < 3.1.29 - Reflected XSS — Ultimate Addons for Contact Form 7 6.1 -2023-08-14
CVE-2023-3645 Contact Form Builder by Bit Form < 2.2.0 - Admin+ Stored XSS — Contact Form Builder by Bit Form 4.8 -2023-08-14
CVE-2023-3721 WP-EMail < 2.69.1 - Admin+ Stored Cross-Site Scripting — WP-EMail 4.8 -2023-08-14
CVE-2023-2843 MultiParcels Shipping For WooCommerce < 1.14.15 - Subscribers+ SQLi — MultiParcels Shipping For WooCommerce 8.8 -2023-08-07
CVE-2023-0604 WP Food Manager < 1.0.4 - Admin+ Stored XSS — WP Food Manager 4.8 -2023-08-07
CVE-2021-24916 Qubely < 1.8.6 - Unauthenticated Arbitrary E-mail Sending — Qubely 5.3 -2023-08-07
CVE-2023-3524 WPCode < 2.0.13.1 - Reflected XSS — WPCode 6.1 -2023-08-07
CVE-2023-3671 MultiParcels Shipping For WooCommerce < 1.15.4 - Reflected XSS — MultiParcels Shipping For WooCommerce 6.1 -2023-08-07
CVE-2023-3365 MultiParcels Shipping For WooCommerce < 1.14.14 - Subscriber+ Arbitrary Shipment Deletion — MultiParcels Shipping For WooCommerce 4.3 -2023-08-07
CVE-2023-3575 Quiz And Survey Master < 8.1.11 - Contributor+ Stored XSS — Quiz And Survey Master 5.4 -2023-08-07
CVE-2023-3492 WP Shopping Pages <= 1.14 - Stored XSS via CSRF — WP Shopping Pages 6.1 -2023-08-07
CVE-2023-3650 Bubble Menu < 3.0.5 - Admin+ Stored XSS — Bubble Menu 4.8 -2023-08-07
CVE-2023-3508 WooCommerce Pre-Orders < 2.0.3 - Unauthorised Actions via CSRF — WooCommerce Pre-Orders 4.3 -2023-07-31
CVE-2023-3507 WooCommerce Pre-Orders < 2.0.3 - Arbitrary Pre-Order Canceling via CSRF — WooCommerce Pre-Orders 4.3 -2023-07-31
CVE-2023-3345 LMS by Masteriyo < 1.6.8 - Information Exposure — LMS by Masteriyo 4.3 -2023-07-31
CVE-2023-3292 Grid Kit Premium < 2.2.0 - Multiple Reflected Cross-Site Scripting — grid-kit-premium 6.1 -2023-07-31
CVE-2023-3134 Forminator < 1.24.4 - Reflected XSS — Forminator 6.1 -2023-07-31
CVE-2023-3130 Short URL < 1.6.5 - Admin+ Cross Site Scripting — Short URL 4.8 -2023-07-31
CVE-2022-4888 Multiple Plugins from Addify - Multiple CSRF — Checkout Fields Manager 5.3 -2023-07-31
CVE-2023-0602 Twittee Text Tweet <= 1.0.8 - Reflected XSS — Twittee Text Tweet 6.1 -2023-07-31
CVE-2023-2761 User Activity Log < 1.6.3 - Admin+ SQL Injection — User Activity Log 7.2 -2023-07-24
CVE-2023-3248 All-in-one Floating Contact Form < 2.1.2 - Admin+ Stored Cross-Site Scripting — All-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs 4.8 -2023-07-24
CVE-2023-3344 Auto Location for WP Job Manager via Google < 1.1 - Admin+ Cross Site Scripting — Auto Location for WP Job Manager via Google 4.8 -2023-07-24
CVE-2023-2309 wpForo Forum < 2.1.9 - Reflected Cross-Site Scripting — wpForo Forum 6.1 -2023-07-24
CVE-2023-2701 Gravity Forms < 2.7.5 - Reflected XSS — gravityforms 6.1 -2023-07-17
CVE-2023-0439 NEX-Forms < 8.4.4 - Authenticated Stored XSS — NEX-Forms 4.8 -2023-07-17
CVE-2023-2330 Caldera Forms Google Sheets Connector < 1.3 - Access Code Update via CSRF — Caldera Forms Google Sheets Connector 6.5 -2023-07-17
CVE-2023-3182 Membership Plugin - Restrict Content < 3.2.3 - Reflected XSS — Membership Plugin 6.1 -2023-07-17
CVE-2023-3245 Floating Chat Widget < 3.1.2 - Admin+ Stored Cross-Site Scripting — Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button 4.8 -2023-07-17
CVE-2023-3179 POST SMTP Mailer < 2.5.7 - Account Takeover via CSRF — POST SMTP Mailer 8.8 -2023-07-17

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.