unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-3357	Smart Slider 3 < 3.5.1.11 - PHP Object Injection — Smart Slider 3CWE-502	9.8	-	2022-10-31
CVE-2022-3360	LearnPress < 4.1.7.2 - Unauthenticated PHP Object Injection via REST API — LearnPress – WordPress LMS PluginCWE-502	8.1	-	2022-10-31
CVE-2022-3366	PublishPress Capabilities < 2.5.2 - Admin+ PHP Objection Injection — PublishPress Capabilities – User Role Access, Editor Permissions, Admin MenusCWE-502	7.2	-	2022-10-31
CVE-2022-3374	Ocean Extra < 2.0.5 - Admin+ PHP Objection Injection — Ocean ExtraCWE-502	7.2	-	2022-10-31
CVE-2022-3380	Customizer Export/Import < 0.9.5 - Admin+ PHP Objection Injection — Customizer Export/ImportCWE-502	7.2	-	2022-10-31
CVE-2022-3408	WP Word Count <= 3.2.3 - Admin+ Stored Cross-Site Scripting — WP Word CountCWE-79	4.8	-	2022-10-31
CVE-2022-3419	Automatic User Roles Switcher < 1.1.2 - Subscriber+ Privilege Escalation — Automatic User Roles SwitcherCWE-269	6.5	-	2022-10-31
CVE-2022-3420	Official Integration for Billingo < 3.4.0 - ShopManager+ Stored XSS — Official Integration for BillingoCWE-79	4.8	-	2022-10-31
CVE-2022-3440	Rock Convert < 2.6.0 - Reflected Cross-Site Scripting — Rock ConvertCWE-79	6.1	-	2022-10-31
CVE-2022-3441	Rock Convert < 2.11.0 - Admin+ Stored Cross-Site Scripting — Rock ConvertCWE-79	4.8	-	2022-10-31
CVE-2022-2762	AdminPad < 2.2 - Note Update via CSRF — AdminPadCWE-352	6.5	-	2022-10-25
CVE-2022-3097	LBStopAttack < 1.1.3 - Arbitrary Settings Update via CSRF — Plugin LBstopattack	8.1	-	2022-10-25
CVE-2022-3246	Blog2Social < 6.9.10 - Subscriber+ SQLi — Blog2Social: Social Media Auto Post & SchedulerCWE-89	8.8	-	2022-10-25
CVE-2022-3247	Blog2Social < 6.9.10 - Subscriber+ SSRF — Blog2Social: Social Media Auto Post & SchedulerCWE-918	8.1	-	2022-10-25
CVE-2022-3300	Form Maker by 10Web < 1.15.6 - Admin+ SQLI — Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form BuilderCWE-89	7.2	-	2022-10-25
CVE-2022-3302	Anti-Spam by CleanTalk < 5.185.1 - Admin+ SQLi — Spam protection, AntiSpam, FireWall by CleanTalkCWE-89	7.2	-	2022-10-25
CVE-2022-3335	Kadence WooCommerce Email Designer < 1.5.7 - Admin+ PHP Objection Injection — Kadence WooCommerce Email DesignerCWE-502	7.2	-	2022-10-25
CVE-2022-3350	Contact Bank <= 3.0.30 - Admin+ Stored Cross-Site Scripting — Contact Bank – Contact Form Builder for WordPressCWE-79	4.8	-	2022-10-25
CVE-2022-3391	Retain Live Chat <= 0.1 - Admin+ Stored Cross-Site Scripting — Retain Live ChatCWE-79	4.8	-	2022-10-25
CVE-2022-3392	WP Humans.txt <= 1.0.6 - Admin+ Stored Cross-Site Scripting — WP Humans.txtCWE-79	4.8	-	2022-10-25
CVE-2022-3393	Post to CSV by BestWebSoft <= 1.4.0 - Author+ CSV Injection — Post to CSV by BestWebSoftCWE-1236	8.8	-	2022-10-25
CVE-2022-3394	WP All Export Pro < 1.7.9 - Authenticated Code Injection — WP All Export ProCWE-94	7.2	-	2022-10-25
CVE-2022-3395	WP All Export Pro < 1.7.9 - Authenticated SQLi — WP All Export ProCWE-89	8.8	-	2022-10-25
CVE-2022-2563	Tutor LMS < 2.0.10 - Admin+ Stored Cross-Site Scripting — Tutor LMS – eLearning and online course solutionCWE-79	4.8	-	2022-10-17
CVE-2022-2574	Meks Easy Social Share < 1.2.8 - Admin+ Stored Cross-Site Scripting — Meks Easy Social ShareCWE-79	4.8	-	2022-10-17
CVE-2022-2834	Helpful < 4.5.26 - Information Disclosure — Helpful	5.3	-	2022-10-17
CVE-2022-3082	miniOrange Discord Integration < 2.1.6 - Subscriber+ App Disabling — miniOrange Discord Integration	-	-	2022-10-17
CVE-2022-3126	Frontend File Manager < 21.4 - File Upload via CSRF — Frontend File Manager PluginCWE-352	6.5	-	2022-10-17
CVE-2022-3131	Search Logger <= 0.9 - Admin+ SQLi — Search Logger – Know What Your Visitors SearchCWE-89	7.2	-	2022-10-17
CVE-2022-3139	We’re Open! < 1.42 - Admin+ Stored Cross-Site Scripting — We’re Open!CWE-79	4.8	-	2022-10-17

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

unknown — Vulnerabilities & Security Advisories 4139