Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

unknown — Vulnerabilities & Security Advisories 4139

Browse all 4139 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2021-24631 Unlimited PopUps <= 4.5.3 - Author+ SQL Injection — Unlimited PopUpsCWE-89 8.8 -2021-11-08
CVE-2021-24630 Schreikasten <= 0.14.18 - Author+ SQL Injections — SchreikastenCWE-89 8.8 -2021-11-08
CVE-2021-24629 Post Content XMLRPC <= 1.0 - Admin+ SQL Injections — Post Content XMLRPCCWE-89 7.2 -2021-11-08
CVE-2021-24628 Wow Forms <= 3.1.3 - Admin+ SQL Injection — Wow Forms – create any form with custom styleCWE-89 7.2 -2021-11-08
CVE-2021-24627 G Auto-Hyperlink <= 1.0.1 - Admin+ SQL Injection — G Auto-HyperlinkCWE-89 7.2 -2021-11-08
CVE-2021-24626 Chameleon CSS <= 1.2 - Subscriber+ SQL Injection — Chameleon CSSCWE-89 8.8 -2021-11-08
CVE-2021-24625 SpiderCatalog <= 1.7.3 - Admin+ SQL Injection — SpiderCatalogCWE-89 7.2 -2021-11-08
CVE-2021-24616 AddToAny Share Buttons < 1.7.48 - Admin+ Stored Cross-Site Scripting — AddToAny Share ButtonsCWE-79 4.8 -2021-11-08
CVE-2021-24607 Storefront Footer Text <= 1.0.1 - Admin+ Stored Cross-Site Scripting — Storefront Footer TextCWE-79 4.8 -2021-11-08
CVE-2021-24594 Translate WordPress - Google Language Translator < 6.0.12 - Admin+ Stored Cross-Site Scripting — Translate WordPress – Google Language TranslatorCWE-79 4.8 -2021-11-08
CVE-2021-24575 WPSchoolPress < 2.1.10 - Multiple Authenticated SQL Injections — School Management System – WPSchoolPressCWE-89 8.8 -2021-11-08
CVE-2021-24537 Similar Posts <= 3.1.5 - Admin+ Arbitrary PHP Code Execution — Similar Posts – Best Related Posts Plugin for WordPressCWE-94 7.2 -2021-11-08
CVE-2021-24813 Events Made Easy < 2.2.24 - Admin+ Stored Cross-Site Scripting — Events Made EasyCWE-79 4.8 -2021-11-01
CVE-2021-24809 BP Better Messages < 1.9.9.41 - Multiple CSRF — BP Better MessagesCWE-352 8.8 -2021-11-01
CVE-2021-24808 BP Better Messages < 1.9.9.41 - Reflected Cross-Site Scripting — BP Better MessagesCWE-79 6.1 -2021-11-01
CVE-2021-24799 Far Future Expiry Header < 1.5 - Plugin's Settings Update via CSRF — Far Future Expiry HeaderCWE-352 4.3 -2021-11-01
CVE-2021-24794 Connections Business Directory < 10.4.3 - Admin+ Stored Cross-Site Scripting — Connections Business DirectoryCWE-79 4.8 -2021-11-01
CVE-2021-24793 WPeMatico RSS Feed Fetcher < 2.6.12 - Admin+ Stored Cross-Site Scripting — WPeMatico RSS Feed FetcherCWE-79 4.8 -2021-11-01
CVE-2021-24789 Flat Preloader < 1.5.5 - Admin+ Stored Cross-Site Scripting — Flat PreloaderCWE-79 4.8 -2021-11-01
CVE-2021-24781 Image Source Control < 2.3.1 - Contributor+ Arbitrary Post Meta Value Change — Image Source ControlCWE-284 6.5 -2021-11-01
CVE-2021-24773 WordPress Download Manager < 3.2.16 - Admin+ Stored Cross-Site Scripting — WordPress Download ManagerCWE-79 4.8 -2021-11-01
CVE-2021-24770 Stylish Price List < 6.9.1 - Subscriber+ Arbitrary Image Upload — Stylish Price ListCWE-863 6.5 -2021-11-01
CVE-2021-24757 Stylish Price List < 6.9.0 - Unauthenticated Arbitrary Image Upload — Stylish Price ListCWE-863 7.5 -2021-11-01
CVE-2021-24742 Logo Slider and Showcase < 1.3.37 - Editor Plugin's Settings Update — Logo Slider and ShowcaseCWE-863 6.5 -2021-11-01
CVE-2021-24723 WP Reactions Lite < 1.3.6 - Authenticated Stored Cross Site Scripting — WP Reactions LiteCWE-79 5.4 -2021-11-01
CVE-2021-24722 Restaurant Menu by MotoPress < 2.4.2 - Admin+ Stored Cross Site Scripting — Restaurant Menu by MotoPressCWE-79 4.8 -2021-11-01
CVE-2021-24717 AutomatorWP < 1.7.6 - Missing Authorization and Privilege Escalation — AutomatorWPCWE-863 8.8 -2021-11-01
CVE-2021-24716 Modern Events Calendar Lite < 5.22.3 - Authenticated Stored Cross Site Scripting — Modern Events Calendar LiteCWE-79 5.4 -2021-11-01
CVE-2021-24715 WP Sitemap Page < 1.7.0 - Admin+ Stored Cross Site Scripting — WP Sitemap PageCWE-79 4.8 -2021-11-01
CVE-2021-24685 Flat Preloader < 1.5.4 - CSRF to Stored Cross-Site Scripting — Flat PreloaderCWE-352 5.4 -2021-11-01

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.