Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-0335 WP Shamsi <= 4.3.3 - Subscriber+ Attachment Deletion — WP Shamsi 6.5 -2023-03-27
CVE-2023-1089 Coupon Zen < 1.0.6 - Arbitrary Plugin Activation via CSRF — Coupon Zen 4.3 -2023-03-27
CVE-2023-0660 Smart Slider 3 < 3.5.1.14 - Contributor+ Stored XSS — Smart Slider 3 5.4 -2023-03-27
CVE-2023-1088 WP Plugin Manager < 1.1.8 - Arbitrary Plugin Activation via CSRF — WP Plugin Manager 4.3 -2023-03-27
CVE-2023-0498 WP Education < 1.2.7 - Arbitrary Plugin Activation via CSRF — WP Education 4.3 -2023-03-27
CVE-2023-0816 Formidable Forms < 6.1 - IP Spoofing — Formidable Forms 6.5 -2023-03-27
CVE-2023-0441 Gallery Blocks with Lightbox < 3.0.8 - Subscriber+ Arbitrary Options Update — Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery 8.1 -2023-03-27
CVE-2023-0504 HT Politic < 2.3.8 - Arbitrary Plugin Activation via CSRF — HT Politic 4.3 -2023-03-27
CVE-2023-0911 Shortcodes Ultimate < 5.12.8 - Subscriber+ User Meta Disclosure — WordPress Shortcodes Plugin — Shortcodes Ultimate 6.5 -2023-03-20
CVE-2023-0340 Custom Content Shortcode <= 4.0.2 - Contributor+ LFI — Custom Content Shortcode 8.8 -2023-03-20
CVE-2023-0875 WP Meta SEO < 4.5.3 - Subscriber+ SQLi — WP Meta SEO 8.8 -2023-03-20
CVE-2023-0273 Custom Content Shortcode <= 4.0.2 - Contributor+ Stored XSS — Custom Content Shortcode 5.4 -2023-03-20
CVE-2022-4148 WP OAuth Server < 4.3.0 - Subscriber+ Arbitrary Client Deletion — WP OAuth Server (OAuth Authentication) 4.3 -2023-03-20
CVE-2023-0937 VK All in One Expansion Unit < 9.87.1.0 - Reflected XSS — VK All in One Expansion Unit 6.1 -2023-03-20
CVE-2023-0370 WPB Advanced FAQ <= 1.0.6 - Contributor+ Stored XSS — WPB Advanced FAQ 5.4 -2023-03-20
CVE-2023-0167 GetResponse for WordPress <= 5.5.31 - Contributor+ Stored XSS — GetResponse for WordPress 5.4 -2023-03-20
CVE-2023-0940 ProfileGrid < 5.3.1 - Subscriber+ Arbitrary Password Reset — ProfileGrid 8.1 -2023-03-20
CVE-2023-0890 Shortcodes Ultimate < 5.12.8 - Subscriber+ Arbitrary Post Access — WordPress Shortcodes Plugin — Shortcodes Ultimate 6.5 -2023-03-20
CVE-2023-0865 WooCommerce Multiple Customer Addresses & Shipping < 21.7 - Arbitrary Address Creation/Deletion/Access/Update via IDOR — WooCommerce Multiple Customer Addresses & Shipping 8.1 -2023-03-20
CVE-2023-0630 Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection — Slimstat Analytics 8.8 -2023-03-20
CVE-2023-0364 real.Kit < 5.1.1 - Contributor+ Stored XSS — real.Kit 5.4 -2023-03-20
CVE-2023-0369 GoToWP <= 5.1.1 - Contributor+ Stored XSS — GoToWP 5.4 -2023-03-20
CVE-2023-0145 Saan World Clock <= 1.8 - Contributor+ Stored XSS — Saan World Clock 5.4 -2023-03-20
CVE-2023-0631 Paid Memberships Pro < 2.9.12 - Subscriber+ SQL Injection — Paid Memberships Pro 8.8 -2023-03-20
CVE-2023-0365 React Webcam <= 1.2.0 - Contributor+ Stored XSS — React Webcam 5.4 -2023-03-20
CVE-2023-0175 Smart Logo Showcase Lite <= 1.1.9 - Contributor+ Stored XSS — Responsive Clients Logo Gallery Plugin for WordPress 5.4 -2023-03-20
CVE-2023-0876 WP Meta SEO < 4.5.3 - Subscriber+ Improper Authorization causing Arbitrary Redirect — WP Meta SEO 4.7 -2023-03-20
CVE-2022-3894 WP OAuth Server < 4.2.5 - Arbitrary Post Deletion via CSRF — WP OAuth Server (OAuth Authentication) 6.5 -2023-03-20
CVE-2022-4466 WordPress Infinite Scroll - Ajax Load More < 5.6.0.3 - Contributor+ Stored XSS — WordPress Infinite Scroll 5.4 -2023-03-13
CVE-2023-0073 Client Logo Carousel <= 3.0.0 - Contributor+ Stored XSS — Client Logo Carousel 5.4 -2023-03-13

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.