Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-0399 Image Over Image For WPBakery Page Builder < 3.0 - Contributor+ Stored XSS — Image Over Image For WPBakery Page Builder 5.4 -2023-04-03
CVE-2023-1377 Solidres <= 0.9.4 - Multiple Reflected XSS — Solidres 6.1 -2023-04-03
CVE-2023-1330 Redirection < 1.1.4 - Redirect Creation via CSRF — Redirection 6.5 -2023-04-03
CVE-2023-1124 Shopping Cart & eCommerce Store < 5.4.3 - Admin+ LFI — Shopping Cart & eCommerce Store 7.2 -2023-04-03
CVE-2023-0820 User Role by BestWebSoft < 1.6.7 - Privilege Escalation via CSRF — User Role by BestWebSoft 8.8 -2023-04-03
CVE-2023-0395 menu shortcode <= 1.0 - Contributor+ Stored XSS via Shortcode — menu shortcode 5.4 -2023-03-27
CVE-2023-1087 WC Sales Notification < 1.2.3 - Arbitrary Plugin Activation via CSRF — WC Sales Notification 4.3 -2023-03-27
CVE-2023-0497 HT Portfolio < 1.1.6 - Arbitrary Plugin Activation via CSRF — HT Portfolio 4.3 -2023-03-27
CVE-2023-1025 Simple File List < 6.0.10 - Admin+ Stored XSS — Simple File List 4.8 -2023-03-27
CVE-2023-0823 Cookie Notice & Compliance for GDPR / CCPA < 2.4.7 - Contributor+ Stored XSS — Cookie Notice & Compliance for GDPR / CCPA 5.4 -2023-03-27
CVE-2023-0272 NEX-Forms < 8.3.3 - Contributor+ Stored XSS — NEX-Forms 5.4 -2023-03-27
CVE-2023-0589 WP Image Carousel <= 1.0.2 - Contributor+ Stored XSS — WP Image Carousel 5.4 -2023-03-27
CVE-2023-0336 OoohBoi Steroids for Elementor < 2.1.5 - Subscriber+ Attachment Deletion — OoohBoi Steroids for Elementor 6.5 -2023-03-27
CVE-2023-0496 HT Event < 1.4.6 - Arbitrary Plugin Activation via CSRF — HT Event 4.3 -2023-03-27
CVE-2023-1086 Preview Link Generator < 1.0.4 - Arbitrary Plugin Activation via CSRF — Preview Link Generator 4.3 -2023-03-27
CVE-2023-1069 Complianz - GDPR/CCPA Cookie Consent < 6.4.2 - Contributor+ Stored XSS — Complianz 5.4 -2023-03-27
CVE-2023-0501 WP Insurance < 2.1.4 - Arbitrary Plugin Activation via CSRF — WP Insurance 4.3 -2023-03-27
CVE-2023-0491 Schedulicity - Easy Online Scheduling <= 2.21 - Contributor+ Stored XSS — Schedulicity 5.4 -2023-03-27
CVE-2023-0500 WP Film Studio < 1.3.5 - Arbitrary Plugin Activation via CSRF — WP Film Studio 4.3 -2023-03-27
CVE-2023-0503 Free WooCommerce Theme 99fy Extension < 1.2.8 - Arbitrary Plugin Activation via CSRF — Free WooCommerce Theme 99fy Extension 4.3 -2023-03-27
CVE-2023-0955 WP Statistics < 14.0 - Authenticated SQLi — WP Statistics 8.8 -2023-03-27
CVE-2023-0502 WP News <= 1.1.9 - Arbitrary Plugin Activation via CSRF — WP News 4.3 -2023-03-27
CVE-2023-0484 Contact Form 7 Widget For Elementor Page Builder & Gutenberg Blocks < 1.1.6 - Arbitrary Plugin Activation via CSRF — Contact Form 7 Widget For Elementor Page Builder & Gutenberg Blocks 4.3 -2023-03-27
CVE-2020-36666 Multiple e-plugins - Subscriber+ Privilege Escalation — directory-pro 9.8 -2023-03-27
CVE-2023-0467 WP Dark Mode < 4.0.8 - Subscriber+ Local File Inclusion — WP Dark Mode 8.1 -2023-03-27
CVE-2023-1400 Modern Events Calendar lite < 6.5.2 - Admin+ Stored XSS — Modern Events Calendar Lite 4.8 -2023-03-27
CVE-2023-0495 HT Slider For Elementor < 1.4.0 - Arbitrary Plugin Activation via CSRF — HT Slider For Elementor 4.3 -2023-03-27
CVE-2023-0505 Ever Compare <= 1.2.3 - Arbitrary Plugin Activation via CSRF — Ever Compare 4.3 -2023-03-27
CVE-2023-1093 OAuth Single Sign On - SSO (OAuth Client) < 6.24.2 - IdP Discard via CSRF — OAuth Single Sign On 6.5 -2023-03-27
CVE-2023-0499 QuickSwish < 1.1.0 - Arbitrary Plugin Activation via CSRF — QuickSwish 4.3 -2023-03-27

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.