Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-0603	Sloth Logo Customizer <= 2.0.2 - Stored XSS via CSRF — Sloth Logo Customizer	6.1	-	2023-05-08
CVE-2023-0537	Product Slider For WooCommerce Lite <= 1.1.7 - Contributor+ Stored XSS — Product Slider For WooCommerce Lite	5.4	-	2023-05-08
CVE-2023-1408	Video List Manager <= 1.7 - Admin+ SQL Injection — Video List Manager	7.2	-	2023-05-08
CVE-2022-4118	Bitcoin / AltCoin Payment Gateway <= 1.7.1 - Unauthenticated SQLi — Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop	7.2	-	2023-05-08
CVE-2023-1347	Customizer Export/Import < 0.9.6 - Admin+ PHP Object Injection — Customizer Export/Import	7.2	-	2023-05-08
CVE-2023-0280	Ultimate Carousel For Elementor <= 2.1.7 - Contributor+ Stored XSS — Ultimate Carousel For Elementor	5.4	-	2023-05-08
CVE-2023-0536	Wp-D3 <= 2.4.1 - Contributor+ Stored XSS — Wp-D3	5.4	-	2023-05-08
CVE-2023-1649	ChatBot < 4.5.1 - Admin+ Stored XSS — AI ChatBot	4.8	-	2023-05-08
CVE-2023-1806	WP Inventory Manager < 2.1.0.12 - Reflected XSS — WP Inventory Manager	6.1	-	2023-05-08
CVE-2023-1650	ChatBot < 4.4.7 - Unauthenticated PHP Object Injection — AI ChatBot	9.8	-	2023-05-08
CVE-2023-0542	Custom Post Type List Shortcode <= 1.4.4 - Contributor+ Stored XSS — Custom Post Type List Shortcode	5.4	-	2023-05-08
CVE-2023-0514	Membership Database <= 1.0 - Reflected XSS — Membership Database	6.1	-	2023-05-08
CVE-2023-1651	ChatBot < 4.4.9 - Subscriber+ OpenAI Settings Update to Stored XSS — AI ChatBot	6.4	-	2023-05-08
CVE-2023-2114	NEX-Forms < 8.4 - Admin+ SQL Injection — NEX-Forms	9.8	-	2023-05-08
CVE-2023-0522	Enable/Disable Auto Login when Register <= 1.1.0 - Settings Update via CSRF — Enable/Disable Auto Login when Register	4.3	-	2023-05-08
CVE-2023-1011	ChatBot < 4.4.5 - Stored XSS via CSRF — AI ChatBot	8.2	-	2023-05-08
CVE-2023-0544	WP Login Box <= 2.0.2 - Admin+ Stored XSS — WP Login Box	4.8	-	2023-05-08
CVE-2023-1660	ChatBot < 4.4.9 - Unauthenticated Stored XSS — AI ChatBot	6.1	-	2023-05-08
CVE-2023-0421	Cloud Manager <= 1.0 - Reflected XSS — Cloud Manager	6.1	-	2023-05-08
CVE-2023-0948	Japanized For WooCommerce < 2.5.8 - Reflected XSS — Japanized For WooCommerce	6.1	-	2023-05-08
CVE-2023-0267	Ultimate Carousel For WPBakery Page Builder <= 2.6 - Contributor+ Stored XSS — Ultimate Carousel For WPBakery Page Builder	5.4	-	2023-05-08
CVE-2023-0768	Avirato hotels online booking engine <= 5.0.5 - Subscriber+ SQLi — Avirato hotels online booking engine	8.8	-	2023-05-08
CVE-2023-0894	Pickup \| Delivery \| Dine-in date time <= 1.0.9 - Admin+ Stored XSS — Pickup \| Delivery \| Dine-in date time	4.8	-	2023-05-08
CVE-2023-1905	WP Popups < 2.1.5.1 - Contributor+ Stored XSS — WP Popups	5.4	-	2023-05-08
CVE-2023-1196	Advanced Custom Fields - Contributor+ PHP Object Injection — Advanced Custom Fields (ACF)	8.8	-	2023-05-02
CVE-2023-1730	SupportCandy < 3.1.5 - Unauthenticated SQLi — SupportCandy	9.8	-	2023-05-02
CVE-2023-1546	MyCryptoCheckout < 2.124 - Reflected XSS — MyCryptoCheckout	6.1	-	2023-05-02
CVE-2023-1911	Blocksy Companion < 1.8.82 - Subscriber+ Draft Post Access — Blocksy Companion	4.3	-	2023-05-02
CVE-2023-1090	WP SMTP Mailing Queue < 2.0.1 - Admin+ Stored XSS — SMTP Mailing Queue	4.8	-	2023-05-02
CVE-2023-1614	WP Custom Author URL < 1.0.5 - Admin+ Stored XSS — WP Custom Author URL	4.8	-	2023-05-02

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Unknown — Vulnerabilities & Security Advisories 4139