目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

UNKNOWN 厂商漏洞列表 / CVE 中文分析 4199

UNKNOWN 厂商相关 4199 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

“Unknown”并非特定厂商,而是指代身份不明的软件组件或开源项目,其核心用途因具体代码库而异,通常涉及基础功能模块。由于缺乏明确维护主体,该类别历史上常暴露远程代码执行、跨站脚本及身份验证绕过等高危漏洞,主要源于代码审计缺失。截至最新统计已收录4141条CVE,凸显供应链安全风险。建议开发者严格审查第三方依赖,及时更新补丁以防范潜在攻击。

Top products by UNKNOWN: Contest Gallery Download Manager Tutor LMS – eLearning and online course solution Modern Events Calendar Lite EventON wp-eMember AI ChatBot Frontend File Manager Plugin Welcart e-Commerce Elementor Website Builder Logo Slider Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress Photo Gallery by 10Web Autoptimize wp-affiliate-platform Booster for WooCommerce wp-cart-for-digital-products Yi Technology Form Maker by 10Web WPQA Builder VikBooking Hotel Booking Engine & PMS Photo Gallery by 10Web – Mobile-Friendly Image Gallery Salon booking system WP MultiTasking LearnPress Popup box MapPress Maps for WordPress EventPrime Simple Download Monitor Himer
CVE ID标题CVSS风险等级Published
CVE-2026-10835 SALESmanago & Leadoo < 3.11.3 订阅者+ SQL注入漏洞 — SALESmanago & Leadoo--2026-06-26
CVE-2026-8380 Frontend File Manager 插件 <= 23.6 任意文章删除漏洞 — Frontend File Manager Plugin--2026-06-26
CVE-2026-10823 YMC Smart Filter <3.11.3 未授权私有/草稿文章泄露漏洞 — YMC Filter--2026-06-26
CVE-2025-10268 Printcart Web to Print Product Designer <= 2.4.8 路径穿越导致未认证文件夹内容泄露漏洞 — Printcart Web to Print Product Designer for WooCommerce--2026-06-26
CVE-2026-9702 InPost PL <1.9.1 未认证订单包裹柜劫持漏洞 — InPost PL--2026-06-25
CVE-2026-10824 Masteriyo LMS <2.2.1 未授权课程进度泄露与删除漏洞 — Masteriyo LMS--2026-06-25
CVE-2026-5305 Email Address Encoder 1.0.25前未授权存储型XSS漏洞 — Email Address Encoder--2026-06-25
CVE-2026-9710 Themeco Cornerstone < 7.8.8 任意用户密码哈希泄露漏洞 — Cornerstone--2026-06-24
CVE-2026-9709 Themeco Cornerstone < 7.8.9 任意用户元数据泄露漏洞 — Cornerstone--2026-06-24
CVE-2026-10531 AI Share & Summarize <2.0.4 存储型XSS漏洞 — AI Share & Summarize--2026-06-24
CVE-2026-10753 Site Kit by Google < 1.176.0 邮件报告设置更新漏洞 — Site Kit by Google--2026-06-24
CVE-2026-10749 Duplicator < 3.0.15 贡献者权限 PHP 对象注入漏洞 — Post Duplicator--2026-06-24
CVE-2026-10735 ShapedPlugin 多个插件后门漏洞 — smart-post-show-pro--2026-06-24
CVE-2026-8378 Frontend File Manager Plugin <= 23.6 存储型XSS漏洞 — Frontend File Manager Plugin--2026-06-23
CVE-2026-8379 Frontend File Manager插件<=23.6 未认证任意文件下载漏洞 — Frontend File Manager Plugin--2026-06-23
CVE-2026-7842 Infility Global <2.15.20 orderby参数SQL注入漏洞 — Infility Global--2026-06-23
CVE-2026-8172 Simple Basic Contact Form <= 20250114 反射型XSS漏洞 — Simple Basic Contact Form--2026-06-23
CVE-2026-8163 Infility Global <2.15.19 订单参数SQL注入漏洞 — Infility Global--2026-06-23
CVE-2026-7859 Motors 汽车经销商 < 1.4.110 未认证元数据写入漏洞 — Motors--2026-06-22
CVE-2026-6858 Transbank Webpay <1.14.0 未授权存储型XSS漏洞 — Transbank Webpay--2026-06-22
CVE-2026-10530 Pie Register <3.8.4.10 可预测令牌绕过邮箱验证漏洞 — Pie Register--2026-06-22
CVE-2026-8157 Vitepos <3.4.2 Outlet Manager+ 权限提升漏洞 — Vitepos--2026-06-22
CVE-2026-4110 Ultimate WooCommerce Auction Pro <=2.4.5 反射型XSS漏洞 — ultimate-woocommerce-auction-pro--2026-06-22
CVE-2026-4259 Ultimate WooCommerce Auction Pro <= 2.4.5 反射型XSS漏洞 — ultimate-woocommerce-auction-pro--2026-06-22
CVE-2026-9822 WP Hotel Booking < 2.3.1 多个 AJAX 处理器缺少授权验证漏洞 — WP Hotel Booking--2026-06-19
CVE-2026-9815 MagicForm <= 0.1.3 未授权任意文件上传导致远程代码执行漏洞 — MagicForm--2026-06-18
CVE-2026-9570 taskbuilder 跨站脚本漏洞 — Taskbuilder--2026-06-17
CVE-2026-8383 Thimpress learnpress 授权问题漏洞 — LearnPress--2026-06-17
CVE-2026-7850 WordPress WP Magnific Popup 跨站脚本漏洞 — WP Magnific Popup--2026-06-17
CVE-2026-8089 weDevs wemail 跨站脚本漏洞 — weMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce--2026-06-17

本页汇总了 UNKNOWN 厂商截至目前公开的全部 4199 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。