目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

UNKNOWN 厂商漏洞列表 / CVE 中文分析 4143

UNKNOWN 厂商相关 4143 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

“Unknown”并非特定厂商,而是指代身份不明的软件组件或开源项目,其核心用途因具体代码库而异,通常涉及基础功能模块。由于缺乏明确维护主体,该类别历史上常暴露远程代码执行、跨站脚本及身份验证绕过等高危漏洞,主要源于代码审计缺失。截至最新统计已收录4141条CVE,凸显供应链安全风险。建议开发者严格审查第三方依赖,及时更新补丁以防范潜在攻击。

上位製品 UNKNOWN: Contest Gallery Download Manager EventON Tutor LMS – eLearning and online course solution Modern Events Calendar Lite AI ChatBot wp-eMember Logo Slider Welcart e-Commerce Elementor Website Builder Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress Photo Gallery by 10Web Booster for WooCommerce Form Maker by 10Web Yi Technology wp-affiliate-platform wp-cart-for-digital-products Autoptimize Simple Download Monitor MapPress Maps for WordPress Salon booking system VikBooking Hotel Booking Engine & PMS WPQA Builder Frontend File Manager Plugin Photo Gallery by 10Web – Mobile-Friendly Image Gallery EventPrime Popup box WP MultiTasking wpb-show-core Transposh WordPress Translation
CVE IDタイトルCVSS深刻度公開日
CVE-2019-25474 Easy MP3 Downloader 4.7.8.8 Denial of Service Buffer Overflow — Easy MP3 Downloader Denial of ServiceCWE-787 6.2 Medium2026-03-11
CVE-2026-2626 Divi Booster < 5.0.2 - Unauthenticated PHP Object Injection — divi-booster 7.5AIHighAI2026-03-11
CVE-2026-2631 Datalogics Ecommerce Delivery < 2.6.60 - Unauthenticated Privilege Escalation — Datalogics Ecommerce Delivery 9.8AICriticalAI2026-03-11
CVE-2026-2466 DukaPress <= 3.2.4 - Reflected XSS — DukaPress 6.1AIMediumAI2026-03-11
CVE-2026-1867 WP Front User Submit < 5.0.6 - Unauthenticated Sensitive Information Exposure — Guest posting / Frontend Posting / Front Editor 7.5AIHighAI2026-03-11
CVE-2026-1753 Gutena Forms < 1.6.1 - Contributor+ Arbitrary Limited Options Update — Gutena Forms 4.3AIMediumAI2026-03-11
CVE-2026-1508 Court Reservation < 1.10.9 - Event Deletion via CSRF — Court Reservation 4.3AIMediumAI2026-03-10
CVE-2026-2446 Powerpack for LearnDash < 1.3.0 - Unauthenticated Arbitrary Option Update — PowerPack for LearnDash 9.8 -2026-03-06
CVE-2026-1128 WP eCommerce <= 3.15.1 - Coupon Deletion via CSRF — WP eCommerce 4.3 -2026-03-06
CVE-2026-2418 Login with Salesforce <= 1.0.2 - Unauthenticated Authentication Bypass — Login with Salesforce 9.8 -2026-03-05
CVE-2026-2025 Mail Mint < 1.19.5 - Unauthenticated Emails Disclosure — Mail Mint 5.3AIMediumAI2026-03-04
CVE-2026-1542 Super Stage WP <= 1.0.1 - Unauthenticated PHP Object Injection — Super Stage WP 9.8 -2026-02-28
CVE-2025-15386 Responsive Lightbox & Gallery < 2.6.1 - Unauthenticated Stored XSS — Responsive Lightbox & Gallery 6.1AIMediumAI2026-02-24
CVE-2026-1369 Conditional CAPTCHA <= 4.0.0 - Open Redirect — Conditional CAPTCHA 6.1AIMediumAI2026-02-22
CVE-2026-1368 Video Conferencing with Zoom API < 4.6.6 - Unauthenticated SDK Signature Generation — Video Conferencing with Zoom 7.5AIHighAI2026-02-18
CVE-2026-0829 Frontend File Manager Plugin <= 23.5 - Unauthenticated Arbitrary Email Sending — Frontend File Manager Plugin 6.5AIMediumAI2026-02-17
CVE-2026-0929 RegistrationMagic < 6.0.7.2 - Subscriber+ Form Creation — RegistrationMagic 4.3AIMediumAI2026-02-16
CVE-2025-15520 RegistrationMagic <= 6.0.7.2 - Subscriber+ Sensitive Data Disclosure — RegistrationMagic 6.5AIMediumAI2026-02-13
CVE-2025-14892 Prime Listing Manager <= 1.1 - Unauthenticated Privilege Escalation — Prime Listing Manager 9.8AICriticalAI2026-02-12
CVE-2026-1235 WP eCommerce <= 3.15.1 - Unauthenticated PHP Object Injection — WP eCommerce 9.8AICriticalAI2026-02-11
CVE-2025-15400 OpenPix <= 2.13.3 - Subscriber+ Payment Gateway Settings Reset — OpenPix for WooCommerce 5.4AIMediumAI2026-02-11
CVE-2025-15491 Post Slides <= 1.0.1 - Contributor+ Local File Inclusion — Post Slides 6.5AIMediumAI2026-02-07
CVE-2026-0658 Five Star Restaurant Reservations < 2.7.9 - Arbitrary Bookings Deletion via CSRF — Five Star Restaurant Reservations 4.3AIMediumAI2026-02-02
CVE-2025-15396 Library Viewer < 3.2.0 - Reflected Cross-Site Scripting — Library Viewer 6.1AIMediumAI2026-02-02
CVE-2025-15030 User Profile Builder < 3.15.2 - Unauthenticated Arbitrary Password Reset — User Profile Builder 8.1AIHighAI2026-02-02
CVE-2025-14975 Custom Login Page Customizer < 2.5.4 - Unauthenticated Arbitrary Password Reset — Custom Login Page Customizer 8.1AIHighAI2026-01-29
CVE-2025-13471 User Activity Log <= 2.2 - Unauthenticated Limited Arbitrary Option Update — User Activity Log 7.5AIHighAI2026-01-28
CVE-2025-14973 Recipe Card Blocks < 3.4.13 - Contributor+ SQLi — Recipe Card Blocks Lite 8.8AIHighAI2026-01-26
CVE-2025-14316 AhaChat Messenger Marketing <= 1.1 - Reflected XSS — AhaChat Messenger Marketing 6.1AIMediumAI2026-01-26
CVE-2025-12573 Bookingor <= 1.0.12 - Subscriber+ Category Deletion — Bookingor 7.1AIHighAI2026-01-20

本页汇总了 UNKNOWN 厂商截至目前公开的全部 4143 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。