unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-1754	NPS computy <= 2.7.5 - Admin+ Stored XSS — NPS computy	4.8^AI	Medium^AI	2024-04-15
CVE-2024-1755	NPS computy <= 2.7.5 - Results Deletion via CSRF — NPS computy	8.8^AI	High^AI	2024-04-15
CVE-2024-1849	WP Customer Reviews < 3.7.1 - Malicious Redirect via HTTP-EQUIV Injection — WP Customer Reviews	5.4^AI	Medium^AI	2024-04-15
CVE-2024-1846	Responsive Tabs < 4.0.7 - Contributor+ Stored XSS — Responsive Tabs	5.4^AI	Medium^AI	2024-04-15
CVE-2024-1660	Top Bar < 3.0.5 - Admin+ Stored XSS — Top Bar	4.8^AI	Medium^AI	2024-04-15
CVE-2024-1712	Carousel Slider < 2.2.7 - Editor+ Stored XSS — Carousel Slider	4.8^AI	Medium^AI	2024-04-15
CVE-2024-1746	Testimonial Slider < 2.3.8 - Admin+ Stored XSS — Testimonial Slider	4.8^AI	Medium^AI	2024-04-15
CVE-2024-1307	Smart Forms < 2.6.94 - Subscriber+ Edit Entries via Broken Access Control — Smart Forms	6.5^AI	Medium^AI	2024-04-15
CVE-2024-1310	WooCommerce < 8.6 - Contributor+ Private/Draft Products Access — WooCommerce	4.3^AI	Medium^AI	2024-04-15
CVE-2024-1204	Meta Box < 5.9.4 - Contributor+ Arbitrary Posts' Custom Field Disclosure — Meta Box	4.3^AI	Medium^AI	2024-04-15
CVE-2024-1306	Smart Forms < 2.6.94 - Edit Entries via CSRF — Smart Forms	4.3^AI	Medium^AI	2024-04-15
CVE-2023-7201	Everest Backup < 2.2.5 - Admin+ Arbitrary File Upload — Everest Backup	7.2^AI	High^AI	2024-04-15
CVE-2024-0399	WooCommerce Customers Manager < 29.7 - Subscriber+ SQL Injection — WooCommerce Customers Manager	8.8^AI	High^AI	2024-04-15
CVE-2024-0902	Fancy Product Designer < 6.1.81 - Admin+ Cross Site Scripting via Product Title — Fancy Product Designer	4.8^AI	Medium^AI	2024-04-15
CVE-2023-6067	WP User Profile Avatar <= 1.0.1 - Contributor+ Stored XSS — WP User Profile Avatar	5.4^AI	Medium^AI	2024-04-15
CVE-2024-2583	Shortcodes Ultimate < 7.0.5 - Contributor+ Stored XSS — WP Shortcodes Plugin — Shortcodes Ultimate	5.4	-	2024-04-13
CVE-2024-0881	Combo Blocks < 2.2.76 - Unauthenticated Password Protected Posts Access — Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel	5.3^AI	Medium^AI	2024-04-11
CVE-2023-6257	Inline Related Posts < 3.6.0 - Subscriber+ Password Protected Post Read — Inline Related Posts	6.5^AI	Medium^AI	2024-04-11
CVE-2024-2428	The Ultimate Video Player For WordPress < 2.2.3 - Contributor+ Stored XSS — The Ultimate Video Player For WordPress	5.4^AI	Medium^AI	2024-04-10
CVE-2023-6385	WordPress Ping Optimizer <= 2.35.1.3.0 - Log Clearing via CSRF — WordPress Ping Optimizer	4.3^AI	Medium^AI	2024-04-10
CVE-2024-1664	Responsive Gallery Grid < 2.3.11 - Admin+ Stored XSS — Responsive Gallery Grid	4.8^AI	Medium^AI	2024-04-09
CVE-2023-7164	BackWPup < 4.0.4 - Unauthenticated Backup Download — BackWPup	7.5^AI	High^AI	2024-04-08
CVE-2024-1958	WPB Show Core < 2.7 - Reflected XSS — wpb-show-core	6.1^AI	Medium^AI	2024-04-08
CVE-2024-1956	WPB Show Core < 2.7 - Reflected XSS — wpb-show-core	6.1^AI	Medium^AI	2024-04-08
CVE-2024-1752	Font Farsi <= 1.6.6 - Admin+ Stored XSS in Settings — Font Farsi	4.8^AI	Medium^AI	2024-04-08
CVE-2024-1589	SendPress Newsletters <= 1.23.11.6 - Admin+ Stored XSS via Form Settings — SendPress Newsletters	4.8^AI	Medium^AI	2024-04-08
CVE-2024-1588	SendPress Newsletters <= 1.23.11.6 - Admin+ Stored XSS via Settings — SendPress Newsletters	4.8^AI	Medium^AI	2024-04-08
CVE-2024-1292	WPB Show Core < 2.6 - Reflected XSS — wpb-show-core	6.1^AI	Medium^AI	2024-04-08
CVE-2024-2444	Inline Related Posts < 3.5.0 - Admin+ Stored XSS — Inline Related Posts	4.8	-	2024-04-06
CVE-2024-2509	Gutenberg Blocks by Kadence Blocks < 3.2.26 - Contributor+ Stored XSS — Gutenberg Blocks by Kadence Blocks	5.4	-	2024-04-05

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

unknown — Vulnerabilities & Security Advisories 4138