Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

unknown — Vulnerabilities & Security Advisories 4138

Browse all 4138 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products unknown:Contest GalleryDownload ManagerTutor LMS – eLearning and online course solutionEventONModern Events Calendar Litewp-eMemberAI ChatBotElementor Website BuilderNinja Forms Contact Form – The Drag and Drop Form Builder for WordPressWelcart e-CommerceLogo SliderForm Maker by 10WebBooster for WooCommerceYi Technologywp-cart-for-digital-productswp-affiliate-platformPhoto Gallery by 10WebMapPress Maps for WordPressEventPrimePopup boxWPQA BuilderWP MultiTaskingPhoto Gallery by 10Web – Mobile-Friendly Image GallerySalon booking systemSimple Download MonitorAutoptimizeVikBooking Hotel Booking Engine & PMSLearnPressNewsletter PopupNinja Forms
CVE IDTitleCVSSSeverityPaused
CVE-2026-1753 Gutena Forms < 1.6.1 - Contributor+ Arbitrary Limited Options Update — Gutena Forms 4.3AIMediumAI2026-03-11
CVE-2026-1508 Court Reservation < 1.10.9 - Event Deletion via CSRF — Court Reservation 4.3AIMediumAI2026-03-10
CVE-2026-2446 Powerpack for LearnDash < 1.3.0 - Unauthenticated Arbitrary Option Update — PowerPack for LearnDash 9.8 -2026-03-06
CVE-2026-1128 WP eCommerce <= 3.15.1 - Coupon Deletion via CSRF — WP eCommerce 4.3 -2026-03-06
CVE-2026-2418 Login with Salesforce <= 1.0.2 - Unauthenticated Authentication Bypass — Login with Salesforce 9.8 -2026-03-05
CVE-2026-2025 Mail Mint < 1.19.5 - Unauthenticated Emails Disclosure — Mail Mint 5.3AIMediumAI2026-03-04
CVE-2026-1542 Super Stage WP <= 1.0.1 - Unauthenticated PHP Object Injection — Super Stage WP 9.8 -2026-02-28
CVE-2025-15386 Responsive Lightbox & Gallery < 2.6.1 - Unauthenticated Stored XSS — Responsive Lightbox & Gallery 6.1AIMediumAI2026-02-24
CVE-2026-1369 Conditional CAPTCHA <= 4.0.0 - Open Redirect — Conditional CAPTCHA 6.1AIMediumAI2026-02-22
CVE-2026-1368 Video Conferencing with Zoom API < 4.6.6 - Unauthenticated SDK Signature Generation — Video Conferencing with Zoom 7.5AIHighAI2026-02-18
CVE-2026-0829 Frontend File Manager Plugin <= 23.5 - Unauthenticated Arbitrary Email Sending — Frontend File Manager Plugin 6.5AIMediumAI2026-02-17
CVE-2026-0929 RegistrationMagic < 6.0.7.2 - Subscriber+ Form Creation — RegistrationMagic 4.3AIMediumAI2026-02-16
CVE-2025-15520 RegistrationMagic <= 6.0.7.2 - Subscriber+ Sensitive Data Disclosure — RegistrationMagic 6.5AIMediumAI2026-02-13
CVE-2025-14892 Prime Listing Manager <= 1.1 - Unauthenticated Privilege Escalation — Prime Listing Manager 9.8AICriticalAI2026-02-12
CVE-2026-1235 WP eCommerce <= 3.15.1 - Unauthenticated PHP Object Injection — WP eCommerce 9.8AICriticalAI2026-02-11
CVE-2025-15400 OpenPix <= 2.13.3 - Subscriber+ Payment Gateway Settings Reset — OpenPix for WooCommerce 5.4AIMediumAI2026-02-11
CVE-2025-15491 Post Slides <= 1.0.1 - Contributor+ Local File Inclusion — Post Slides 6.5AIMediumAI2026-02-07
CVE-2026-0658 Five Star Restaurant Reservations < 2.7.9 - Arbitrary Bookings Deletion via CSRF — Five Star Restaurant Reservations 4.3AIMediumAI2026-02-02
CVE-2025-15396 Library Viewer < 3.2.0 - Reflected Cross-Site Scripting — Library Viewer 6.1AIMediumAI2026-02-02
CVE-2025-15030 User Profile Builder < 3.15.2 - Unauthenticated Arbitrary Password Reset — User Profile Builder 8.1AIHighAI2026-02-02
CVE-2025-14975 Custom Login Page Customizer < 2.5.4 - Unauthenticated Arbitrary Password Reset — Custom Login Page Customizer 8.1AIHighAI2026-01-29
CVE-2025-13471 User Activity Log <= 2.2 - Unauthenticated Limited Arbitrary Option Update — User Activity Log 7.5AIHighAI2026-01-28
CVE-2025-14973 Recipe Card Blocks < 3.4.13 - Contributor+ SQLi — Recipe Card Blocks Lite 8.8AIHighAI2026-01-26
CVE-2025-14316 AhaChat Messenger Marketing <= 1.1 - Reflected XSS — AhaChat Messenger Marketing 6.1AIMediumAI2026-01-26
CVE-2025-12573 Bookingor <= 1.0.12 - Subscriber+ Category Deletion — Bookingor 7.1AIHighAI2026-01-20
CVE-2025-14829 e-xact-hosted-payment <= 2.0 - Unauthenticated Arbitrary File Deletion — E-xact | Hosted Payment | 9.1AICriticalAI2026-01-13
CVE-2025-10915 Dreamer Blog <= 1.2 - Subscriber+ Arbitrary Plugin Installation — Dreamer Blog 9.8AICriticalAI2026-01-13
CVE-2025-14579 Quiz Maker < 6.7.0.89 - Admin+ Stored XSS — Quiz Maker 4.8AIMediumAI2026-01-12
CVE-2025-14803 Nex-Forms Express WP Form Builder < 9.1.8 - Authenticated Stored XSS — NEX-Forms 5.4 -2026-01-09
CVE-2025-14804 Frontend File Manager < 23.5 - Subscriber+ Arbitrary File Deletion — Frontend File Manager Plugin 6.5 -2026-01-07

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.