Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2021-24711 Software License Manager < 4.5.1 - Arbitrary Domain Deletion via CSRF — Software License ManagerCWE-352 8.8 -2021-10-11
CVE-2021-24709 Weather Effect < 1.3.6 - Admin+ Stored Cross-Site Scripting — Weather Effect – Christmas Santa Snow FallingCWE-79 4.8 -2021-10-11
CVE-2021-24691 Quiz And Survey Master < 7.3.2 - Admin+ Stored Cross-Site Scripting — Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPressCWE-79 4.8 -2021-10-11
CVE-2021-24690 Chained Quiz < 1.2.7.2 - Authenticated Stored Cross Site Scripting — Chained QuizCWE-79 5.4 -2021-10-11
CVE-2021-24683 Weather Effect < 1.3.4 - CSRF to Stored Cross-Site Scripting — Weather Effect – Christmas Santa Snow FallingCWE-352 5.4 -2021-10-11
CVE-2021-24681 Duplicate Page <= 4.4.2 - Admin+ Stored Cross-Site Scripting — Duplicate PageCWE-79 4.8 -2021-10-11
CVE-2021-24656 Simple Social Media Share Buttons < 3.2.4 - Authenticated Stored Cross-Site Scripting — Simple Social Media Share Buttons – Social Sharing for EveryoneCWE-79 4.8 -2021-10-11
CVE-2021-24651 Poll Maker < 3.4.2 - Unauthenticated Time Based SQL Injection — Poll MakerCWE-89 7.5 -2021-10-11
CVE-2021-24577 Coming Soon and Maintenance Mode < 3.5.3 - Authenticated Stored XSS — Coming soon and Maintenance modeCWE-79 5.4 -2021-10-11
CVE-2021-24576 Easy Accordion < 2.0.22 - Authenticated Stored XSS — Easy Accordion – Best Accordion FAQ Plugin for WordPressCWE-79 4.7 -2021-10-11
CVE-2021-24563 Frontend Uploader <= 1.3.2 - Unauthenticated Stored Cross-Site Scripting — Frontend UploaderCWE-79 5.4 -2021-10-11
CVE-2021-24546 EditorsKit < 1.31.6 - Contributor+ Arbitrary PHP Code Execution — Gutenberg Block Editor Toolkit – EditorsKitCWE-94 8.8 -2021-10-11
CVE-2021-24545 WP HTML Author Bio <= 1.2.0 - Author+ Stored Cross-Site Scripting — WP HTML Author BioCWE-79 5.4 -2021-10-11
CVE-2021-24687 Modern Events Calendar Lite < 5.22.2 - Admin+ Stored Cross-Site Scripting — Modern Events Calendar LiteCWE-79 4.8 -2021-10-04
CVE-2021-24679 Bitcoin / AltCoin Payment Gateway for WooCommerce < 1.6.1 - Reflected Cross-Site Scripting — Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shopCWE-79 6.1 -2021-10-04
CVE-2021-24678 CM Tooltip Glossary < 3.9.21 - Contributor+ Stored Cross-Site Scripting — CM Tooltip Glossary – Better SEO and UEX for your WP siteCWE-79 5.4 -2021-10-04
CVE-2021-24676 Better Find and Replace < 1.2.9 - Reflected Cross-Site Scripting — Better Find and ReplaceCWE-79 6.1 -2021-10-04
CVE-2021-24673 Appointment Hour Booking < 1.3.16 - Authenticated Stored Cross-Site Scripting — Appointment Hour Booking – WordPress Booking PluginCWE-79 4.8 -2021-10-04
CVE-2021-24654 User Registration < 2.0.2 - Low Privilege Stored Cross-Site Scripting — User Registration – Custom Registration Form, Login And User Profile For WordPressCWE-79 5.4 -2021-10-04
CVE-2021-24465 Meow Gallery < 4.1.9 - Contributor+ SQL Injection — Meow Gallery (+ Gallery Block)CWE-89 8.1 -2021-10-04
CVE-2021-24671 MX Time Zone Clocks < 3.4.1 - Contributor+ Cross-Site Scripting — MX Time Zone ClocksCWE-79 5.4 -2021-09-27
CVE-2021-24670 CoolClock < 4.3.5 - Contributor+ Stored Cross-Site Scripting — CoolClock – a Javascript Analog ClockCWE-79 5.4 -2021-09-27
CVE-2021-24666 Podlove Podcast Publisher < 3.5.6 - Unauthenticated SQL Injection — Podlove Podcast PublisherCWE-89 9.8 -2021-09-27
CVE-2021-24661 PostX Gutenberg Blocks Saved Templates Addon < 2.4.10 - Private Content Disclosure — PostX – Gutenberg Blocks for Post GridCWE-200 4.3 -2021-09-27
CVE-2021-24660 PostX Gutenberg Blocks Saved Templates Addon < 2.4.10 - Contributor+ Stored Cross-Site Scripting — PostX – Gutenberg Blocks for Post GridCWE-79 5.4 -2021-09-27
CVE-2021-24659 PostX Gutenberg Blocks for Post Grid < 2.4.10 - Contributor+ Stored Cross-Site Scripting — PostX – Gutenberg Blocks for Post GridCWE-79 5.4 -2021-09-27
CVE-2021-24652 PostX Gutenberg Blocks for Post Grid < 2.4.10 - Missing Access Controls — PostX – Gutenberg Blocks for Post GridCWE-863 6.5 -2021-09-27
CVE-2021-24643 WP Map Block < 1.2.3 - Contributor+ Stored Cross-Site Scripting — WP Map Block – Gutenberg Map Block for Google Map and OpenStreet MapCWE-79 5.4 -2021-09-27
CVE-2021-24634 Recipe Card Blocks < 2.8.3 - Contributor+ Stored Cross-Site Scripting — Recipe Card Blocks by WPZOOMCWE-79 5.4 -2021-09-27
CVE-2021-24633 Countdown Block < 1.1.2 - Missing Authorisation in AJAX action — Countdown BlockCWE-862 4.3 -2021-09-27

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.