unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CVE ID	Title	CVSS	Severity	Published
CVE-2021-24271	Ultimate Addons for Elementor < 1.30.0 - Contributor+ Stored XSS — Ultimate Addons for ElementorCWE-79	5.4	-	2021-05-05
CVE-2021-24272	Fitness Calculators < 1.9.6 - Cross-Site Request Forgery to Cross-Site Scripting (XSS) — fitness calculatorsCWE-352	4.3	-	2021-05-05
CVE-2021-24257	Premium Addons for Elementor < 4.2.8 - Contributor+ Stored Cross-Site Scripting (XSS) — Premium Addons for ElementorCWE-79	5.4	-	2021-05-05
CVE-2021-24259	Elementor Addon Elements < 1.11.2 - Contributor+ Stored XSS — Elementor Addon ElementsCWE-79	5.4	-	2021-05-05
CVE-2021-24260	Livemesh Addons for Elementor < 6.8 - Contributor+ Stored XSS — Livemesh Addons for ElementorCWE-79	5.4	-	2021-05-05
CVE-2021-24261	HT Mega - Absolute Addons for Elementor Page Builder < 1.5.7 - Contributor+ Stored XSS — HT Mega – Absolute Addons for Elementor Page BuilderCWE-79	5.4	-	2021-05-05
CVE-2021-24262	WooLentor - WooCommerce Elementor Addons + Builder < 1.8.6 - Contributor+ Stored XSS — WooLentor – WooCommerce Elementor Addons + BuilderCWE-79	5.4	-	2021-05-05
CVE-2021-24263	PowerPack Addons for Elementor < 2.3.2 - Contributor+ Stored XSS — PowerPack Addons for ElementorCWE-79	5.4	-	2021-05-05
CVE-2021-24264	Image Hover Effects - Elementor Addon < 1.3.4 - Contributor+ Stored XSS — Image Hover Effects – Elementor AddonCWE-79	5.4	-	2021-05-05
CVE-2021-24255	Essential Addons for Elementor < 4.5.4 - Contributor+ Stored Cross-Site Scripting (XSS) — Essential Addons for ElementorCWE-79	5.4	-	2021-05-05
CVE-2021-24256	Elementor - Header, Footer & Blocks Template < 1.5.8 - Contributor+ Stored XSS — Elementor – Header, Footer & Blocks TemplateCWE-79	5.4	-	2021-05-05
CVE-2021-24239	Pie Register < 3.7.0.1 - Reflected Cross-Site Scripting (XSS) — Pie Register – User Registration Forms. Invitation based registrations, Custom Login, PaymentsCWE-79	6.1	-	2021-04-22
CVE-2021-24240	Business Hours Pro <= 5.5.0 - Unauthenticated Arbitrary File Upload to RCE — Business Hours ProCWE-434	9.8	-	2021-04-22
CVE-2021-24241	Advanced Custom Field Pro < 5.9.1 - Reflected Cross-Site Scripting (XSS) — Advanced Custom Fields ProCWE-79	6.1	-	2021-04-22
CVE-2021-24232	Advanced Booking Calendar < 1.6.8 - Authenticated Reflected Cross-Site Scripting (XSS) — Advanced Booking CalendarCWE-79	5.4	-	2021-04-22
CVE-2021-24233	Cooked Pro < 1.7.5.6 - Unauthenticated Reflected Cross Site Scripting (XSS) — Cooked PproCWE-79	6.1	-	2021-04-22
CVE-2021-24234	Ivory Search < 4.6.1 - Reflected Cross Site Scripting (XSS) — Ivory Search – WordPress Search PluginCWE-79	6.1	-	2021-04-22
CVE-2021-24235	Goto - Tour & Travel < 2.0 - Unauthenticated Reflected XSS — GotoCWE-79	6.1	-	2021-04-22
CVE-2021-24231	Patreon WordPress < 1.7.0 - CSRF to Disconnect Sites From Patreon — Patreon WordPressCWE-352	6.5	-	2021-04-12
CVE-2021-24230	Patreon WordPress < 1.7.0 - CSRF to Overwrite/Create User Meta — Patreon WordPressCWE-352	6.5	-	2021-04-12
CVE-2021-24229	Patreon WordPress < 1.7.2 - Reflected XSS on patreon_save_attachment_patreon_level AJAX action — Patreon WordPressCWE-79	9.6	-	2021-04-12
CVE-2021-24228	Patreon WordPress < 1.7.2 - Reflected XSS on Login Form — Patreon WordPressCWE-79	9.6	-	2021-04-12
CVE-2021-24227	Patreon WordPress < 1.7.0 - Unauthenticated Local File Disclosure — Patreon WordPressCWE-200	7.5	-	2021-04-12
CVE-2021-24226	AccessAlly < 3.5.7 - $_SERVER Superglobal Leakage — AccessAllyCWE-200	7.5	-	2021-04-12
CVE-2021-24225	Advanced Booking Calendar < 1.6.7 - Authenticated Reflected Cross-Site Scripting (XSS) — Advanced Booking CalendarCWE-79	5.4	-	2021-04-12
CVE-2021-24224	Easy Form Builder <= 1.0 - Authenticated Arbitrary File Upload — Easy Form BuilderCWE-434	8.8	-	2021-04-12
CVE-2021-24223	N5 Upload Form <= 1.0 - Unauthenticated Arbitrary File Upload to RCE — N5 Upload FormCWE-434	9.8	-	2021-04-12
CVE-2021-24222	WP-Curricul Vitea Free <= 6.3 - Unauthenticated Arbitrary File Upload to RCE — WP-Curriculo Vitae FreeCWE-434	9.8	-	2021-04-12
CVE-2021-24221	Quiz And Survey Master < 7.1.12 - Authenticated SQL injection via shortcode — Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPressCWE-89	8.8	-	2021-04-12
CVE-2021-24218	Facebook for WordPress 3.0.0-3.0.3 - CSRF to Stored XSS and Settings Deletion — Facebook for WordPressCWE-352	8.8	-	2021-04-12

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

unknown — Vulnerabilities & Security Advisories 4138