Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2024-12302 Icegram Engage < 3.1.32 - Author+ Stored XSS — Icegram Engage 5.4 -2025-01-06
CVE-2024-11849 Pods – Custom Content Types and Fields < 3.2.8.1 - Admin+ Stored XSS — Pods 4.8 -2025-01-06
CVE-2024-11356 Tourmaster < 5.3.4 - Unauthenticated Stored XSS via Room Booking — tourmaster 6.1 -2025-01-06
CVE-2024-12595 AHAthat Plugin <= 1.6 - Reflected XSS via REQUEST_URI — AHAthat Plugin 6.1 -2025-01-02
CVE-2024-11357 Goodlayers Core < 2.0.10 - Contributor+ Stored XSS — goodlayers-core 5.4 -2025-01-02
CVE-2024-11184 WP Enabled SVG <= 0.7 - Author+ Stored XSS via SVG — wp-enable-svg 8.2 -2025-01-02
CVE-2024-11846 Travel Tour < 5.2.4 - Reflected XSS — TravelTour 6.1 -2025-01-01
CVE-2024-11972 Hunk Companion < 1.9.0 - Unauthenticated Plugin Installation — Hunk Companion 9.1 -2024-12-31
CVE-2024-11921 Give < 3.19.0 - Reflected XSS — GiveWP 6.1 -2024-12-27
CVE-2024-11842 DN Shipping by Weight for WooCommerce < 1.2 - Settings Update via CSRF — DN Shipping by Weight for WooCommerce 6.5 -2024-12-27
CVE-2024-11645 Float Block <= 1.7 - Admin+ Stored XSS via Widget — float block 4.8 -2024-12-27
CVE-2024-11644 WP-SVG <= 0.9 - Contributor+ Stored XSS via Shortcode — WP-SVG 5.4 -2024-12-27
CVE-2024-11605 WP Publications <= 1.2 - Admin+ Stored XSS — wp-publications 4.8 -2024-12-27
CVE-2024-11223 WPForms < 1.9.2.3 - Admin+ Stored XSS — WPForms 4.8 -2024-12-26
CVE-2024-10903 Broken Link Checker < 2.4.2 - Admin+ SSRF — Broken Link Checker 6.5 -2024-12-26
CVE-2024-10858 Jetpack 13.0-14.0 - Unauthenticated DOM-XSS — Jetpack 6.1 -2024-12-25
CVE-2024-12096 Exhibit to WP Gallery <= 0.0.2 - Reflected XSS — Exhibit to WP Gallery 6.1 -2024-12-24
CVE-2024-11607 GTPayment Donations <= 1.0.0 - Stored XSS via CSRF — GTPayment Donations 6.1 -2024-12-21
CVE-2024-8968 MaxButtons < 9.8.1 - Admin+ Stored XSS via Text Color — WordPress Button Plugin MaxButtons 4.8 -2024-12-20
CVE-2024-10706 Download Manager < 3.3.03 - Admin+ Stored XSS — Download Manager 4.8 -2024-12-20
CVE-2024-11108 Serious Slider < 1.2.7 - Contributor+ Stored XSS via Shortcode — Serious Slider 5.4 -2024-12-20
CVE-2024-10555 MaxButtons < 9.8.1 - Admin+ Stored XSS via Button Width — WordPress Button Plugin MaxButtons 4.8 -2024-12-20
CVE-2024-10892 Cost Calculator Builder < 3.2.43 - Settings update via CSRF — Cost Calculator Builder 8.8 -2024-12-18
CVE-2024-5333 The Events Calendar < 6.8.2.1 - Unauthenticated Password Protected Event Disclosure — The Events Calendar 5.3 -2024-12-16
CVE-2024-11841 Tithe.ly Giving Button <= 1.1 - Contributor+ Stored XSS via Shortcode — Tithe.ly Giving Button 5.4 -2024-12-16
CVE-2024-10939 Image Widget < 4.4.11 - Admin+ Stored XSS — Image Widget 4.8 -2024-12-13
CVE-2024-10678 Ultimate Blocks < 3.2.4 - Contributor+ Stored XSS — Ultimate Blocks 5.4 -2024-12-13
CVE-2024-9641 LuckyWP Table of Contents < 2.1.7 - Admin+ Stored XSS — LuckyWP Table of Contents 4.8 -2024-12-12
CVE-2024-9428 Popup Builder < 4.3.5 - Admin+ Stored XSS — Popup Builder 4.8 -2024-12-12
CVE-2024-9881 LearnPress < 4.2.7.2 - Admin+ Stored XSS — LearnPress 4.8 -2024-12-12

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.