Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2021-24962 WordPress File Upload < 4.16.3 - Contributor+ Path Traversal to RCE — WordPress File UploadCWE-22 8.8 -2022-03-28
CVE-2021-24746 Sassy Social Share < 3.3.40 - Reflected Cross-Site Scripting — Social Sharing Plugin – Sassy Social ShareCWE-79 6.1 -2022-03-28
CVE-2022-0760 Simple Link Directory < 7.7.2 - Unauthenticated SQL injection — Simple Link DirectoryCWE-89 9.8 -2022-03-21
CVE-2022-0747 Infographic Maker - iList < 4.3.8 - Unauthenticated SQL Injection — Infographic Maker – iListCWE-89 9.8 -2022-03-21
CVE-2022-0739 BookingPress < 1.0.11 - Unauthenticated SQL Injection — BookingPress – Appointments Booking Calendar Plugin and Online Scheduling PluginCWE-89 9.8 -2022-03-21
CVE-2022-0694 Advanced Booking Calendar < 1.7.0 - Unauthenticated SQL Injection — Advanced Booking CalendarCWE-89 9.8 -2022-03-21
CVE-2022-0687 Amelia < 1.0.46 - Manager+ RCE — Amelia – Events & Appointments Booking CalendarCWE-434 8.8 -2022-03-21
CVE-2022-0681 Simple Membership < 4.1.0 - Arbitrary Transaction Deletion via CSRF — Simple MembershipCWE-352 6.5 -2022-03-21
CVE-2022-0640 AP Pricing Tables Lite < 1.1.5 - Reflected Cross-Site Scripting — Pricing Table Builder – AP Pricing Tables LiteCWE-79 6.1 -2022-03-21
CVE-2022-0628 AP Mega Menu < 3.0.8 - Reflected Cross-Site Scripting — Mega Menu Plugin for WordPress – AP Mega MenuCWE-79 6.1 -2022-03-21
CVE-2022-0627 Amelia < 1.0.46 - Reflected Cross-Site Scripting — Amelia – Events & Appointments Booking CalendarCWE-79 6.1 -2022-03-21
CVE-2022-0616 Amelia < 1.0.46 - Arbitrary Customer Deletion via CSRF — Amelia – Events & Appointments Booking CalendarCWE-352 4.3 -2022-03-21
CVE-2022-0591 Formcraft3 < 3.8.28 - Unauthenticated SSRF — FormCraftCWE-918 9.1 -2022-03-21
CVE-2022-0590 BulletProof Security < 5.8 - Admin+ Stored Cross-Site Scripting (XSS) — BulletProof SecurityCWE-79 4.8 -2022-03-21
CVE-2022-0423 3D FlipBook < 1.12.1 - Subscriber+ Stored Cross-Site Scripting — 3D FlipBook – PDF Flipbook Viewer, Flipbook Image GalleryCWE-79 5.4 -2022-03-21
CVE-2022-0364 Modern Events Calendar Lite < 6.4.0 - Contributor+ Stored Cross Site Scripting — Modern Events Calendar LiteCWE-79 5.4 -2022-03-21
CVE-2022-0229 miniOrange's Google Authenticator < 5.5 - Unauthenticated Arbitrary Options Deletion — miniOrange's Google Authenticator 8.1 -2022-03-21
CVE-2021-25019 SEO Plugin by Squirrly SEO < 11.1.12 - Reflected Cross-Site Scripting — SEO Plugin by Squirrly SEOCWE-79 6.1 -2022-03-21
CVE-2021-24905 Advanced Contact form 7 DB < 1.8.7 - Subscriber+ Arbitrary File Deletion — Advanced Contact form 7 DBCWE-863 8.0 -2022-03-21
CVE-2022-22735 Simple Quotation <= 1.3.2 - Subscriber+ SQL injection — Simple QuotationCWE-89 8.8 -2022-03-14
CVE-2022-22734 Simple Quotation <= 1.3.2 - Quote Creation/Edition via CSRF to Stored Cross-Site Scripting — Simple Quotation 6.1 -2022-03-14
CVE-2022-0703 GD Mylist <= 1.1.1 - Admin+ Stored Cross-Site Scripting — GDMylistCWE-79 4.8 -2022-03-14
CVE-2022-0702 Petfinder Listings <= 1.0.18 - Admin+ Stored Cross-Site Scripting — Petfinder ListingsCWE-79 4.8 -2022-03-14
CVE-2022-0701 SEO 301 Meta <= 1.9.1 - Admin+ Stored Cross-Site Scripting — Seo 301 MetaCWE-79 4.8 -2022-03-14
CVE-2022-0700 Simple Theme Options < 1.7 - Admin+ Stored Cross-Site Scripting — Simple TrackingCWE-79 4.8 -2022-03-14
CVE-2022-0684 WP Home Page Menu < 3.1 - Admin+ Stored Cross-Site Scripting — WP Home Page MenuCWE-79 4.8 -2022-03-14
CVE-2022-0674 Kunze Law < 2.1 - Admin+ Stored Cross-Site Scripting — Kunze LawCWE-79 4.8 -2022-03-14
CVE-2022-0659 Sync iCloud COS < 2.0.1 - Admin+ Stored Cross-Site Scripting — Sync QCloud COSCWE-79 4.8 -2022-03-14
CVE-2022-0658 CommonsBooking < 2.6.8 - Unauthenticated SQL Injection — CommonsBookingCWE-89 9.8 -2022-03-14
CVE-2022-0648 Team Circle Image Slider With Lightbox < 1.0.16 - Reflected Cross-Site Scripting — Team Circle Image Slider With LightboxCWE-79 6.1 -2022-03-14

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.