Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting Unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2023-7196 Ultimate Noindex Nofollow Tool <= 1.1.2 - Settings Update via CSRF — Ultimate Noindex Nofollow Tool 4.3AIMediumAI2025-05-15
CVE-2023-7197 Marketing Twitter Bot <= 1.11 - Settings Update to Stored XSS via CSRF — Marketing Twitter Bot 6.1AIMediumAI2025-05-15
CVE-2023-7174 aBitGone CommentSafe <= 1.0.0 - Settings Update to Stored XSS via CSRF — aBitGone CommentSafe 6.1AIMediumAI2025-05-15
CVE-2023-7168 Better Follow Button for Jetpack <= 8.0 - Admin+ Stored XSS — Better Follow Button for Jetpack 4.8AIMediumAI2025-05-15
CVE-2023-7086 SVG Uploads Support <= 2.1.1 - Author+ Stored XSS via SVG — SVG Uploads Support 5.4AIMediumAI2025-05-15
CVE-2023-7088 Add SVG Support for Media Uploader | inventivo <= 1.0.5 - Author+ Stored XSS via SVG — Add SVG Support for Media Uploader | inventivo 5.4AIMediumAI2025-05-15
CVE-2023-6783 WolfNet IDX for WordPress <= 1.19.1 - Admin+ Stored XSS — WolfNet IDX for WordPress 4.8AIMediumAI2025-05-15
CVE-2023-6786 Payment Gateway for Telcell <= 2.0.1 - Unauthenticated Open Redirect — Payment Gateway for Telcell 6.1AIMediumAI2025-05-15
CVE-2023-6541 Allow SVG < 1.2.0 - Author+ Stored XSS via SVG — Allow SVG 5.4AIMediumAI2025-05-15
CVE-2023-6030 LogDash Activity Log < 1.1.4 - Unauthenticated SQLi — LogDash Activity Log 9.8AICriticalAI2025-05-15
CVE-2023-5932 Travelpayouts < 1.1.14 - Reflected XSS — Travelpayouts: All Travel Brands in One Place 6.1AIMediumAI2025-05-15
CVE-2023-5934 Travelpayouts < 1.1.13 - Settings Update via CSRF — Travelpayouts: All Travel Brands in One Place 4.3AIMediumAI2025-05-15
CVE-2023-5529 Advanced Page Visit Counter <= 8.0.6 - Admin+ Stored XSS — Advanced Page Visit Counter 4.8AIMediumAI2025-05-15
CVE-2023-2334 Easy Digital Downloads Google Sheet Connector < 1.6.6 - Access Code Update via CSRF — edd-google-sheet-connector-pro 6.5AIMediumAI2025-05-15
CVE-2025-2248 WP-PManager <= 1.2 - Admin+ SQL Injection — WP-PManager 7.2AIHighAI2025-05-15
CVE-2025-2247 WP-PManager <= 1.2 - Category Deletion via CSRF — WP-PManager 4.3AIMediumAI2025-05-15
CVE-2025-1303 Plugin Oficial – Getnet para WooCommerce <= 1.7.3 - Unauthenticated Reflected XSS — Plugin Oficial 6.1AIMediumAI2025-05-15
CVE-2025-1289 Plugin Oficial – Getnet para WooCommerce <= 1.7.3 - Admin+ Stored XSS — Plugin Oficial 4.8AIMediumAI2025-05-15
CVE-2025-2203 WooCommerce Checkout & Funnel Builder by FunnelKit < 3.10.2 - Admin+ SQL Injection — FunnelKit 7.2AIHighAI2025-05-15
CVE-2025-1454 Ninja Pages <= 1.4.2 - Admin+ Stored XSS — Ninja Pages 4.8AIMediumAI2025-05-15
CVE-2025-1033 Badgearoo <= 1.0.14 - Admin+ Stored XSS — Badgearoo 4.8AIMediumAI2025-05-15
CVE-2025-1286 Download HTML TinyMCE Button <= 1.2 - Reflected XSS — Download HTML TinyMCE Button 6.1AIMediumAI2025-05-15
CVE-2025-1288 wooexim <= 5.0.0 - CSRF to Reflected XSS — WOOEXIM 6.1AIMediumAI2025-05-15
CVE-2025-0688 Spiritual Gifts Survey <= 0.9.10 - Unauthenticated CSRF to XSS — Spiritual Gifts Survey (and optional S.H.A.P.E survey) 6.1AIMediumAI2025-05-15
CVE-2025-0329 AI ChatBot for WordPress – WPBot < 6.2.4 - Admin+ Stored XSS — AI ChatBot for WordPress 4.8AIMediumAI2025-05-15
CVE-2025-0687 Spiritual Gifts Survey <= 0.9.10 - Unauthenticated CSRF to XSS — Spiritual Gifts Survey (and optional S.H.A.P.E survey) 6.1AIMediumAI2025-05-15
CVE-2024-9882 Salon Booking System < 10.9.4 - Admin+ Stored XSS — Salon Booking System, Appointment Scheduling for Salons, Spas & Small Businesses 4.8AIMediumAI2025-05-15
CVE-2024-9838 Auto Affiliate Links < 6.4.7 - Admin+ SQL Injection — Auto Affiliate Links 7.2AIHighAI2025-05-15
CVE-2024-9879 Website File Changes < 2.1.1 - Authenticated SQL Injection — Melapress File Monitor 7.2AIHighAI2025-05-15
CVE-2024-9831 Taskbuilder < 3.0.9 - Admin+ SQL Injection — Taskbuilder 7.2AIHighAI2025-05-15

This page lists every published CVE security advisory associated with Unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.