Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

UNKNOWN — Vulnerabilities & Security Advisories 4151

Browse all 4151 CVE security advisories affecting UNKNOWN. AI-powered Chinese analysis, POCs, and references for each vulnerability.

“Unknown” represents a broad category of unclassified or poorly documented software components, currently associated with 4,141 recorded CVEs. These vulnerabilities typically stem from legacy architectures or proprietary systems lacking transparent security audits. Common flaw classes include remote code execution, cross-site scripting, and privilege escalation, often resulting from inadequate input validation or hardcoded credentials. Due to the opaque nature of these products, detailed security characteristics are frequently absent, making risk assessment difficult for organizations. Major incidents involving “Unknown” entities often highlight systemic failures in patch management and vendor accountability. The sheer volume of vulnerabilities suggests widespread reliance on unsupported or obscure technologies within critical infrastructure. Addressing these risks requires rigorous inventory management and proactive threat hunting, as standard mitigation strategies may not apply to such undefined software ecosystems.

Top products by UNKNOWN: Contest Gallery Download Manager Tutor LMS – eLearning and online course solution Modern Events Calendar Lite EventON wp-eMember AI ChatBot Logo Slider Elementor Website Builder Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress Welcart e-Commerce Photo Gallery by 10Web Autoptimize wp-affiliate-platform wp-cart-for-digital-products Form Maker by 10Web Booster for WooCommerce Yi Technology WPQA Builder VikBooking Hotel Booking Engine & PMS Frontend File Manager Plugin EventPrime Popup box WP MultiTasking Salon booking system Photo Gallery by 10Web – Mobile-Friendly Image Gallery Simple Download Monitor MapPress Maps for WordPress wpb-show-core Ninja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2022-4670 PDF.js Viewer < 2.1.8 - Contributor+ Stored XSS via Shortcode — PDF.js Viewer 5.4 -2023-02-06
CVE-2022-4657 Restaurant Menu < 2.3.6 - Contributor+ Stored XSS via Shortcode — Restaurant Menu 5.4 -2023-02-06
CVE-2023-0171 jQuery T(-) Countdown Widget < 2.3.24 - Contributor+ Stored XSS — jQuery T(-) Countdown Widget 5.4 -2023-02-06
CVE-2023-0147 Flexible Captcha <= 4.1 - Contributor+ Stored XSS — Flexible Captcha 5.4 -2023-02-06
CVE-2022-4677 Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) < 3.12.7 - Contributor+ Stored XSS via Shortcode — Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) 5.4 -2023-02-06
CVE-2023-0096 Happyforms < 1.22.0 - Contributor+ Stored XSS — Form builder to get in touch with visitors, grow your email list and collect payments — Happyforms 5.4 -2023-02-06
CVE-2022-4836 Breadcrumb < 1.5.33 - Contributor+ Stored XSS via Shortcode — Breadcrumb 5.4 -2023-02-06
CVE-2023-0081 MonsterInsights < 8.12.1 - Contributor+ Stored XSS — MonsterInsights 5.4 -2023-02-06
CVE-2023-0150 Cloak Front End Email < 1.9.2 - Contributor+ Stored XSS — Cloak Front End Email 5.4 -2023-02-06
CVE-2023-0146 Naver Map <= 1.1.0 - Contributor+ Stored XSS — Naver Map 5.4 -2023-02-06
CVE-2023-0170 Html5 Audio Player < 2.1.12 - Contributor+ Stored XSS — Html5 Audio Player 5.4 -2023-02-06
CVE-2023-0062 EAN for WooCommerce < 4.4.3 - Contributor+ Stored XSS — EAN for WooCommerce 5.4 -2023-02-06
CVE-2023-0234 SiteGround Security < 1.3.1 - Admin+ SQLi — SiteGround Security 8.8 -2023-02-06
CVE-2023-0173 WPFunnels < 2.6.9 - Contributor+ Stored XSS — Drag & Drop Sales Funnel Builder for WordPress 5.4 -2023-02-06
CVE-2022-4747 Post Category Image With Grid and Slider < 1.4.8 - Contributor+ Stored XSS via Shortcode — Post Category Image With Grid and Slider 5.4 -2023-02-06
CVE-2023-0149 WordPrezi < 0.9 - Contributor+ Strored XSS — WordPrezi 5.4 -2023-02-06
CVE-2023-0082 ExactMetrics < 7.12.1 - Contributor+ Stored XSS — ExactMetrics 5.4 -2023-02-06
CVE-2023-0153 Vimeo Video Autoplay Automute <= 1.0 - Contributor+ Stored XSS — Vimeo Video Autoplay Automute 5.4 -2023-02-06
CVE-2022-4321 PDF Generator for WordPress < 1.1.2 - Reflected XSS — PDF Generator for WordPress 6.1 -2023-02-06
CVE-2023-0144 Event Manager and Tickets Selling Plugin for WooCommerce < 3.8.0 - Contributor+ Stored XSS — Event Manager and Tickets Selling Plugin for WooCommerce 5.4 -2023-02-06
CVE-2022-4459 WP Show Posts < 1.1.4 - Contributor+ Stored XSS — WP Show Posts 5.4 -2023-02-06
CVE-2023-0282 YourChannel < 1.2.2 - Subscriber+ Stored XSS — YourChannel: Everything you want in a YouTube plugin. 5.4 -2023-02-06
CVE-2022-4674 Ibtana – WordPress Website Builder < 1.1.8.8 - Contributor+ Stored XSS via Shortcode — Ibtana 5.4 -2023-02-06
CVE-2023-0095 Page View Count < 2.6.1 - Contributor+ Stored XSS — Page View Count 5.4 -2023-02-06
CVE-2023-0148 Gallery Factory Lite <= 2.0.0 - Contributor+ Stored XSS — Gallery Factory Lite 5.4 -2023-02-06
CVE-2022-4681 Hide My WP < 6.2.9 - Unauthenticated SQLi — Hide My WP 9.8 -2023-02-06
CVE-2023-0236 Tutor LMS < 2.0.10 - Reflected Cross-Site Scripting — Tutor LMS 6.1 -2023-02-06
CVE-2022-4838 Clean Login < 1.13.7 - Contributor+ Stored XSS via Shortcode — Clean Login 5.4 -2023-02-06
CVE-2022-4833 YourChannel: Everything you want in a YouTube plugin < 1.2.3 - Contributor+ Stored XSS via Shortcode — YourChannel: Everything you want in a YouTube plugin. 5.4 -2023-02-06
CVE-2022-4825 WP-ShowHide < 1.05 - Contributor+ Stored XSS via Shortcode — WP-ShowHide 5.4 -2023-02-06

This page lists every published CVE security advisory associated with UNKNOWN. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.