Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

UNKNOWN — Vulnerabilities & Security Advisories 4148

Browse all 4148 CVE security advisories affecting UNKNOWN. AI-powered Chinese analysis, POCs, and references for each vulnerability.

“Unknown” represents a broad category of unclassified or poorly documented software components, currently associated with 4,141 recorded CVEs. These vulnerabilities typically stem from legacy architectures or proprietary systems lacking transparent security audits. Common flaw classes include remote code execution, cross-site scripting, and privilege escalation, often resulting from inadequate input validation or hardcoded credentials. Due to the opaque nature of these products, detailed security characteristics are frequently absent, making risk assessment difficult for organizations. Major incidents involving “Unknown” entities often highlight systemic failures in patch management and vendor accountability. The sheer volume of vulnerabilities suggests widespread reliance on unsupported or obscure technologies within critical infrastructure. Addressing these risks requires rigorous inventory management and proactive threat hunting, as standard mitigation strategies may not apply to such undefined software ecosystems.

Top products by UNKNOWN: Contest Gallery Download Manager EventON Tutor LMS – eLearning and online course solution Modern Events Calendar Lite AI ChatBot wp-eMember Logo Slider Welcart e-Commerce Elementor Website Builder Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress Photo Gallery by 10Web Booster for WooCommerce Autoptimize Form Maker by 10Web wp-affiliate-platform wp-cart-for-digital-products Yi Technology WPQA Builder Simple Download Monitor Salon booking system MapPress Maps for WordPress Photo Gallery by 10Web – Mobile-Friendly Image Gallery Frontend File Manager Plugin Popup box EventPrime VikBooking Hotel Booking Engine & PMS WP MultiTasking GiveWP – Donation Plugin and Fundraising Platform Ditty
CVE IDTitleCVSSSeverityPublished
CVE-2025-1362 easy-broken-link-checker <= 9.0.2 - Bulk Actions via CSRF — URL Shortener | Conversion Tracking | AB Testing | WooCommerce 4.3 -2025-03-09
CVE-2024-13826 Email Keep <= 1.1 - Email Deletion via CSRF — Email Keep 4.3 -2025-03-08
CVE-2024-13825 Email Keep <= 1.1 - Reflected XSS — Email Keep 6.1 -2025-03-08
CVE-2024-13668 WordPress Activity O Meter <= 1 - Reflected XSS — WordPress Activity O Meter 6.1 -2025-03-07
CVE-2024-9458 Reservit Hotel < 3.0 - Admin+ Stored XSS — Reservit Hotel 4.8 -2025-03-07
CVE-2024-13868 Easy Broken Link Checker <= 9.0.2 - Reflected XSS — URL Shortener | Conversion Tracking | AB Testing | WooCommerce 6.1 -2025-03-06
CVE-2024-13685 Admin and Site Enhancements (ASE) < 7.6.10 - Limit Login Attempt Bypass via IP Spoofing — Admin and Site Enhancements (ASE) 7.5 -2025-03-04
CVE-2024-13669 CalendApp <= 1.1 - Reflected XSS — CalendApp 6.1 -2025-02-26
CVE-2024-13678 R3W Instafeed <= 1.0 - Reflected XSS — R3W InstaFeed 6.1 -2025-02-26
CVE-2024-13633 Simple Catalogue <= 1.0.2 - Reflected XSS — Simple catalogue 6.1 -2025-02-26
CVE-2024-13634 Post Sync <= 1.1 - Reflected XSS — Post Sync 6.1 -2025-02-26
CVE-2024-13632 WP Extra Fields <= 1.0.1 - Reflected XSS — WP Extra Fields 6.1 -2025-02-26
CVE-2024-13630 News List <= 1.0 - Reflected XSS — NewsTicker 6.1 -2025-02-26
CVE-2024-13631 OM Stripe <= 02.00.00 - Reflected XSS — Om Stripe 6.1 -2025-02-26
CVE-2024-13629 Pushbiz <= 1.0 - Reflected XSS — pushBIZ 6.1 -2025-02-26
CVE-2024-13624 WPMovieLibrary <= 2.1.4.8 - Reflected XSS — WPMovieLibrary 6.1 -2025-02-26
CVE-2024-13628 WP Pricing Table <= 1.1 - Reflected XSS — WP Pricing Table 6.1 -2025-02-26
CVE-2024-13571 Post Timeline < 2.3.10 - Reflected XSS — Post Timeline 6.1 -2025-02-26
CVE-2024-13113 Countdown Timer for Elementor < 1.3.7 - Contributor+ Stored XSS — Countdown Timer for Elementor 5.4 -2025-02-26
CVE-2024-12878 Custom Block Builder – Lazy Blocks < 3.8.3 - Reflected XSS — Custom Block Builder 6.1 -2025-02-26
CVE-2024-12737 WP BASE Booking of Appointments, Services and Events < 5.0.0 - Reflected XSS — WP BASE Booking of Appointments, Services and Events 6.1 -2025-02-26
CVE-2024-10483 SimplePress Forum < 6.10.11 - Reflected XSS — Simple:Press Forum 6.1 -2025-02-26
CVE-2024-10563 WooCommerce Cart Count Shortcode < 1.1.0 - Contributor+ XSS — WooCommerce Cart Count Shortcode 5.4 -2025-02-26
CVE-2024-10152 Simple Certain Time to Show Content < 1.3.1 - Reflected XSS — Simple Certain Time to Show Content 6.1 -2025-02-26
CVE-2024-10545 NextGEN Gallery < 3.59.9 - Admin+ Stored XSS — Photo Gallery, Sliders, Proofing and Themes 4.8 -2025-02-25
CVE-2024-13822 Total Contest Lite <= 2.8.1 - Reflected XSS — Photo Contest | Competition | Video Contest 6.1 -2025-02-24
CVE-2024-13605 Form Maker by 10Web < 1.15.33 - Admin+ Stored XSS — Form Maker by 10Web 4.8 -2025-02-24
CVE-2024-12308 Logo Slider < 4.6.0 - Contributor+ Stored XSS — Logo Slider 5.4 -2025-02-24
CVE-2024-13585 Ajax Search Lite < 4.12.5 - Admin+ Stored XSS — Ajax Search Lite 4.8 -2025-02-21
CVE-2024-13314 Carousel, Slider, Gallery by WP Carousel < 2.7.4 - Admin+ Stored XSS — Carousel, Slider, Gallery by WP Carousel 4.8 -2025-02-21

This page lists every published CVE security advisory associated with UNKNOWN. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.