Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2024-2322 WooCommerce Cart Abandonment Recovery < 1.2.27 - Templates/Abandoned Orders Deletion via CSRF — WooCommerce Cart Abandonment Recovery 6.5 -2024-04-03
CVE-2024-1274 My Calendar < 3.4.24 - Authenticated Stored XSS — My Calendar 5.4AIMediumAI2024-04-02
CVE-2024-2369 Page Builder Gutenberg Blocks < 3.1.7 - Contributor+ Stored XSS — Page Builder Gutenberg Blocks 5.4AIMediumAI2024-04-02
CVE-2024-2263 WooCommerce Product Filter < 1.4.4 - Reflected XSS — Themify 6.1 -2024-04-01
CVE-2024-2262 WooCommerce Product Filter < 1.4.4 - Filter Deletion via CSRF — Themify 6.5 -2024-04-01
CVE-2024-2278 WooCommerce Product Filter < 1.4.4 - Admin+ Stored XSS — Themify 4.8 -2024-04-01
CVE-2024-1526 Hubbub Lite < 1.33.1 - Unauthenticated Password Protected Posts Access — Hubbub Lite 6.5 -2024-04-01
CVE-2024-0673 Pz-LinkCard <= 2.5.1 - Admin+ Stored XSS — Pz-LinkCard 4.8AIMediumAI2024-03-28
CVE-2024-0677 Pz-LinkCard <= 2.5.1 - Contributor+ SSRF — Pz-LinkCard 6.5AIMediumAI2024-03-28
CVE-2024-0672 Pz-LinkCard <= 2.5.1 - Reflected XSS — Pz-LinkCard 6.1AIMediumAI2024-03-28
CVE-2024-1745 Testimonial Slider < 2.3.7 - Author+ Settings Update — Testimonial Slider 4.3AIMediumAI2024-03-26
CVE-2023-7232 Backup and Restore WordPress <= 1.45 - Unauthenticated Sensitive Data Exposure — Backup and Restore WordPress 7.5AIHighAI2024-03-26
CVE-2024-1962 CM Download and File Manager < 2.9.1 - Download Edit via CSRF — CM Download Manager 4.3AIMediumAI2024-03-25
CVE-2024-1564 Schema Pro < 2.7.16 - Contributor+ Custom Field Access — wp-schema-pro 5.4AIMediumAI2024-03-25
CVE-2024-1231 CM Download and File Manager < 2.9.0 - Download Unpublish via CSRF — CM Download Manager 4.3AIMediumAI2024-03-25
CVE-2024-1232 CM Download Manager < 2.9.0 - Download Deletion via CSRF — CM Download Manager 4.3AIMediumAI2024-03-25
CVE-2024-1983 Simple Ajax Chat < 20240223 - Unauthenticated Stored XSS — Simple Ajax Chat 4.3AIMediumAI2024-03-20
CVE-2024-0856 Booking Calendar < 1.3.83 - CSRF appointment scheduling — Appointment Booking Calendar 4.3AIMediumAI2024-03-20
CVE-2023-7246 System Dashboard < 2.8.10 - XSS via Header Injection — System Dashboard 4.8AIMediumAI2024-03-20
CVE-2024-0337 Travelpayouts <= 1.1.15 - Open Redirect — Travelpayouts: All Travel Brands in One Place 6.1AIMediumAI2024-03-20
CVE-2024-1401 Profile Box Shortcode And Widget < 1.2.1 Admin+ Stored XSS — Profile Box Shortcode And Widget 4.8AIMediumAI2024-03-19
CVE-2023-7236 Backup Bolt <= 1.3.0 - Sensitive Data Exposure — Backup Bolt 5.3 -2024-03-18
CVE-2024-0711 Buttons Shortcode and Widget <= 1.16 - Stored XSS via shortcode — Buttons Shortcode and Widget 5.4 -2024-03-18
CVE-2024-0951 Advanced Social Feeds Widget & Shortcode <= 1.7 - Admin+ Stored XSS — Advanced Social Feeds Widget & Shortcode 4.8 -2024-03-18
CVE-2023-7085 Scalable Vector Graphics (SVG) <= 3.4 - Author+ Stored XSS via SVG — Scalable Vector Graphics (SVG) 5.4 -2024-03-18
CVE-2023-6821 Error Log Viewer < 1.1.3 - Directory Listing to Sensitive Data Exposure — Error Log Viewer by BestWebSoft 7.5 -2024-03-18
CVE-2024-0858 Innovs HR <= 1.0.3.4 - Employee Creation via CSRF — Innovs HR 6.5 -2024-03-18
CVE-2024-0973 Widget for Social Page Feeds < 6.4 - Admin+ Stored XSS — Widget for Social Page Feeds 4.8 -2024-03-18
CVE-2024-0820 Jobs for WordPress < 2.7.4 - Contributor+ Stored XSS — Jobs for WordPress 5.4 -2024-03-18
CVE-2024-0719 Tabs Shortcode and Widget <= 1.17 - Contributor+ Stored Cross-Site Scripting — Tabs Shortcode and Widget 5.4 -2024-03-18

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.