Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-1893 Login Configurator <= 2.1 - Reflected Cross-Site Scripting — Login Configurator 6.1 -2023-07-17
CVE-2023-2143 Enable SVG, WebP & ICO Upload <= 1.0.3 - Author+ Stored XSS — Enable SVG, WebP & ICO Upload 6.1 -2023-07-17
CVE-2023-2636 AN_GradeBook <= 5.0.1 - Subscriber+ SQLi — AN_GradeBook 8.8 -2023-07-17
CVE-2023-3186 Supsystic Popup < 1.10.19 - Prototype Pollution — Popup by Supsystic 9.8 -2023-07-17
CVE-2023-3041 Autochat <= 1.1.7- Unauthenticated Stored XSS — Autochat Automatic Conversation 5.4 -2023-07-17
CVE-2023-2329 WooCommerce Google Sheet Connector < 1.3.6 - Access Code Update via CSRF — WooCommerce Google Sheet Connector 6.5 -2023-07-17
CVE-2023-2579 InventoryPress <= 1.7 - Author+ Stored XSS — InventoryPress 5.4 -2023-07-17
CVE-2022-4023 3DPrint < 3.5.6.9 - CSRF to arbitrary file downlad — 3dprint 6.5 -2023-07-17
CVE-2023-1208 HTTP Headers < 1.18.11 - Admin+ Remote Code Execution — HTTP Headers 9.8 -2023-07-10
CVE-2023-3219 EventON < 2.1.2 - Unauthenticated Post Access via IDOR — EventON 7.5 -2023-07-10
CVE-2023-3131 MStore API < 3.9.7 - Subscriber+ Unauthorized Settings Update — MStore API 9.1 -2023-07-10
CVE-2023-3225 Float menu < 5.0.3 - Admin+ Stored Cross-Site Scripting — Float menu 4.8 -2023-07-10
CVE-2023-2967 TinyMCE Custom Styles < 1.1.4 - Admin+ Stored Cross-Site Scripting — TinyMCE Custom Styles 4.8 -2023-07-10
CVE-2023-2635 Call Now Accessibility Button < 1.1 - Admin+ Stored XSS — Call Now Accessibility Button 4.8 -2023-07-10
CVE-2023-3209 MStore API < 3.9.7 - Settings Update via CSRF — MStore API 9.1 -2023-07-10
CVE-2023-2029 PrePost SEO <= 3.0 - Admin+ Stored Cross-Site Scripting — PrePost SEO 4.8 -2023-07-10
CVE-2023-2028 Call Now Accessibility Button < 1.1 - Admin+ Stored Cross Site Scripting — Call Now Accessibility Button 4.8 -2023-07-10
CVE-2023-3175 AI ChatBot < 4.6.1 - Admin+ Stored Cross-Site Scripting — AI ChatBot 4.8 -2023-07-10
CVE-2023-2709 AN_GradeBook <= 5.0.1 - Admin+ XSS — AN_GradeBook 4.8 -2023-07-10
CVE-2023-3118 Export All URLs < 4.6 - Reflected XSS — Export All URLs 6.1 -2023-07-10
CVE-2023-2529 Enable SVG Uploads <= 2.1.5 - Author+ Stored XSS via SVG — Enable SVG Uploads 5.4 -2023-07-10
CVE-2023-1597 tagDiv Cloud Library < 2.7 - Unauthenticated Arbitrary User Metadata Update to Privilege Escalation — tagDiv Cloud Library 9.1 -2023-07-10
CVE-2023-2495 Greeklish-permalink < 3.5 - Unauthenticated Post Slug Update — Greeklish-permalink 6.5 -2023-07-10
CVE-2023-1780 Companion Sitemap Generator < 4.5.3 - Reflected XSS — Companion Sitemap Generator 6.1 -2023-07-10
CVE-2023-2964 Simple Iframe < 1.2.0 - Contributor+ Stored XSS — Simple Iframe 5.4 -2023-07-10
CVE-2023-2026 Image Protector <= 1.1 - Admin+ Stored Cross-Site Scripting — Image Protector 4.8 -2023-07-10
CVE-2023-1119 Multiple Plugins - Cross-Site Scripting From Third-party Library — WP-Optimize 6.1 -2023-07-10
CVE-2023-3077 MStore API < 3.9.8 - Unauthenticated Blind SQLi — MStore API 9.8 -2023-07-10
CVE-2023-3076 MStore API < 3.9.9 - Unauthenticated Privilege Escalation — MStore API 8.1 -2023-07-10
CVE-2023-2578 Buy Me a Coffee < 3.7 - Admin+ Stored XSS — Buy Me a Coffee 4.8 -2023-07-10

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.