Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2021-24561 WP SMS < 5.4.13 - Authenticated Stored Cross-Site Scripting — WP SMSCWE-79 5.4 -2021-08-23
CVE-2021-24558 Project Status <= 1.6 - Reflected Cross-Site Scripting (XSS) — Project StatusCWE-79 4.8 -2021-08-23
CVE-2021-24557 M-vSlider <= 2.1.3 - Authenticated (admin+) SQL Injection — M-vSliderCWE-89 7.2 -2021-08-23
CVE-2021-24556 Email Subscriber <= 1.1 - Unauthenticated Stored Cross-Site Scripting (XSS) — Email SubscriberCWE-79 6.1 -2021-08-23
CVE-2021-24554 Paytm - Donation Plugin <= 1.3.2 - Authenticated (admin+) SQL Injection — Paytm – Donation PluginCWE-89 7.2 -2021-08-23
CVE-2021-24555 Diary & Availability Calendar <= 1.0.3 - Authenticated (subscriber+) SQL Injection — Diary & Availability CalendarCWE-89 8.8 -2021-08-23
CVE-2021-24553 Timeline Calendar <= 1.2 - Authenticated (admin+) SQL Injection — Timeline CalendarCWE-89 7.2 -2021-08-23
CVE-2021-24552 Simple Events Calendar <= 1.4.0 - Authenticated (admin+) SQL Injection — Simple Events CalendarCWE-89 7.2 -2021-08-23
CVE-2021-24551 Edit Comments <= 0.3 - Unauthenticated SQL Injection — Edit CommentsCWE-89 7.2 -2021-08-23
CVE-2021-24550 Broken Link Manager <= 0.6.5 - Authenticated (admin+) SQL Injection — Broken Link ManagerCWE-89 7.2 -2021-08-23
CVE-2021-24549 AceIDE <= 2.6.2 - Authenticated (admin+) Arbitrary File Access — AceIDECWE-22 4.9 -2021-08-23
CVE-2021-24547 KN Fix Your Title <= 1.0.1 - Authenticated Stored XSS — KN Fix Your TitleCWE-79 5.4 -2021-08-23
CVE-2021-24533 Maintenance < 4.03 - Authenticated Stored XSS — MaintenanceCWE-79 4.8 -2021-08-23
CVE-2021-24529 Grid Gallery < 1.2.5 - Authenticated Stored Cross Site Scripting (XSS) — Grid Gallery – Photo Image Grid GalleryCWE-79 5.4 -2021-08-23
CVE-2021-24531 Charitable – Donation Plugin < 1.6.51 - Authenticated Stored Cross-Site Scripting (XSS) — Charitable – Donation PluginCWE-79 5.4 -2021-08-23
CVE-2021-24524 GiveWP < 2.12.0 - Authenticated Stored XSS — GiveWP – Donation Plugin and Fundraising PlatformCWE-79 4.8 -2021-08-23
CVE-2021-24506 Slider Hero < 8.2.7 - Contributor+ SQL Injection — Slider Hero with Animation, Video Background & Intro MakerCWE-89 8.8 -2021-08-23
CVE-2021-24497 Giveaway <= 1.2.2 - Authenticated SQL Injection — GiveawayCWE-89 7.2 -2021-08-23
CVE-2021-24486 Simple Social Media Share Buttons < 3.2.3 - Contributor+ Stored XSS — Simple Social Media Share Buttons – Social Sharing for EveryoneCWE-79 5.4 -2021-08-23
CVE-2021-24548 Mimetic Books <= 0.2.13 - Authenticated Stored Cross-Site Scripting (XSS) — Mimetic BooksCWE-79 5.4 -2021-08-16
CVE-2021-24541 Wonder PDF Embed < 1.7 - Contributor+ Stored XSS — Wonder PDF EmbedCWE-79 5.4 -2021-08-16
CVE-2021-24538 Current Book <= 1.0.1 - Authenticated Stored Cross-Site Scripting (XSS) — Current BookCWE-79 5.4 -2021-08-16
CVE-2021-24540 Wonder Video Embed < 1.8 - Contributor+ Stored XSS — Wonder Video EmbedCWE-79 5.4 -2021-08-16
CVE-2021-24536 Custom Login Redirect <= 1.0.0 - CSRF to Stored XSS — Custom Login RedirectCWE-79 6.1 -2021-08-16
CVE-2021-24535 Light Messages <= 1.0 - CSRF to Stored XSS — Light MessagesCWE-79 6.1 -2021-08-16
CVE-2021-24534 PhoneTrack Meu Site Manager <= 0.1 - Authenticated Stored XSS — PhoneTrack Meu Site ManagerCWE-79 5.4 -2021-08-16
CVE-2021-24527 Profile Builder < 3.4.9 - Admin Access via Password Reset — User Registration & User Profile – Profile BuilderCWE-287 9.8 -2021-08-16
CVE-2021-24526 Form Maker < 1.13.60 - Authenticated Stored XSS — Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form BuilderCWE-79 5.4 -2021-08-16
CVE-2021-24519 Vik Rent Car < 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS) — VikRentCar Car Rental Management SystemCWE-79 4.8 -2021-08-16
CVE-2021-24518 WPFront Notification Bar < 2.0.0.07176 - Authenticated Stored XSS — WPFront Notification BarCWE-79 4.8 -2021-08-16

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.