Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

unknown — Vulnerabilities & Security Advisories 4151

Browse all 4151 CVE security advisories affecting unknown. AI-powered Chinese analysis, POCs, and references for each vulnerability.

“Unknown” represents a broad category of unclassified or poorly documented software components, currently associated with 4,141 recorded CVEs. These vulnerabilities typically stem from legacy architectures or proprietary systems lacking transparent security audits. Common flaw classes include remote code execution, cross-site scripting, and privilege escalation, often resulting from inadequate input validation or hardcoded credentials. Due to the opaque nature of these products, detailed security characteristics are frequently absent, making risk assessment difficult for organizations. Major incidents involving “Unknown” entities often highlight systemic failures in patch management and vendor accountability. The sheer volume of vulnerabilities suggests widespread reliance on unsupported or obscure technologies within critical infrastructure. Addressing these risks requires rigorous inventory management and proactive threat hunting, as standard mitigation strategies may not apply to such undefined software ecosystems.

Top products by unknown: Contest Gallery Download Manager Tutor LMS – eLearning and online course solution Modern Events Calendar Lite EventON wp-eMember AI ChatBot Logo Slider Elementor Website Builder Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress Welcart e-Commerce Photo Gallery by 10Web Autoptimize wp-affiliate-platform wp-cart-for-digital-products Form Maker by 10Web Booster for WooCommerce Yi Technology WPQA Builder VikBooking Hotel Booking Engine & PMS Frontend File Manager Plugin EventPrime Popup box WP MultiTasking Salon booking system Photo Gallery by 10Web – Mobile-Friendly Image Gallery Simple Download Monitor MapPress Maps for WordPress wpb-show-core Ninja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2022-4753 Print-O-Matic < 2.1.8 - Contributor+ Stored XSS via Shortcode — Print-O-Matic 5.4 -2023-01-23
CVE-2022-4323 Google Analyticator < 6.5.6 - Admin+ PHP Object Injection — Analyticator 7.2 -2023-01-23
CVE-2022-4548 Optimize images ALT Text (alt tag) & names for SEO using AI < 2.0.8 - Settings Update via CSRF — Optimize images ALT Text (alt tag) & names for SEO using AI 6.5 -2023-01-23
CVE-2022-4509 Content Control < 1.1.10 - Contributor+ Stored XSS — Content Control 5.4 -2023-01-23
CVE-2022-3425 Google Analyticator < 6.5.6 - Admin+ PHP Object Injection — Analyticator 7.2 -2023-01-23
CVE-2022-4230 WP Statistics < 13.2.9 - Authenticated SQLi — WP Statistics 8.8 -2023-01-23
CVE-2022-4545 Sitemap < 4.4 - Contributor+ Stored XSS — Sitemap 5.4 -2023-01-23
CVE-2022-4706 Genesis Columns Advanced < 2.0.4 - Contributor+ Stored XSS via Shortcode — Genesis Columns Advanced 5.4 -2023-01-23
CVE-2022-4383 CBX Petition for WordPress <= 1.0.3 - Unauthenticated SQLi — CBX Petition for WordPress 9.8 -2023-01-23
CVE-2022-4751 Word Balloon < 4.19.3 - Contributor+ Stored XSS via Shortcode — Word Balloon 5.4 -2023-01-23
CVE-2022-3811 EU Cookie Law <= 3.1.6 - Admin+ Stored XSS — EU Cookie Law for GDPR/CCPA 4.8 -2023-01-23
CVE-2022-4474 Easy Social Feed – Social Photos Gallery – Post Feed – Like Box < 6.4.0 - Contributor+ Stored XSS — Easy Social Feed 5.4 -2023-01-23
CVE-2022-4570 Top 10 < 3.2.3 - Contributor+ Stored XSS — Top 10 5.4 -2023-01-23
CVE-2022-4675 Mongoose Page Plugin < 1.9.0 - Contributor+ Stored XSS via Shortcode — Mongoose Page Plugin 5.4 -2023-01-23
CVE-2022-4789 WPZOOM Portfolio < 1.2.2 - Contributor+ Stored XSS via Shortcode — WPZOOM Portfolio 5.4 -2023-01-23
CVE-2022-4475 Collapse-O-Matic < 1.8.3 - Contributor+ Stored XSS — Collapse-O-Matic 5.4 -2023-01-23
CVE-2022-4443 BruteBank - WP Security & Firewall < 1.9 - Settings Update via CSRF — BruteBank 4.3 -2023-01-23
CVE-2022-4746 FluentAuth < 1.0.2 - Bypass blocks by IP Spoofing — FluentAuth 7.5 -2023-01-23
CVE-2022-4576 Easy Bootstrap Shortcode <= 4.5.4 - Contributor+ Stored XSS — Easy Bootstrap Shortcode 5.4 -2023-01-23
CVE-2022-4624 GS Logo Slider < 3.3.8 - Contributor+ Stored XSS in Shortcode — GS Logo Slider 5.4 -2023-01-23
CVE-2022-4673 Rate my Post – WP Rating System < 3.3.9 - Contributor+ Stored XSS via Shortcode — Rate my Post 5.4 -2023-01-23
CVE-2021-24881 Passster < 3.5.5.9 - Protection Bypass & Arbitrary Post Access — Passster 7.5 -2023-01-23
CVE-2022-4307 Pardakht Delkhah < 2.9.3 - Unauthenticated Stored XSS — پلاگین پرداخت دلخواه 6.1 -2023-01-23
CVE-2022-4346 All In One WP Security & Firewall < 5.1.3 - Configuration Leak — All-In-One Security (AIOS) 5.3 -2023-01-23
CVE-2022-4716 WP Popups < 2.1.4.8 - Contributor+ Stored XSS — WP Popups 5.4 -2023-01-23
CVE-2022-4668 Easy Appointments < 3.11.2 - Contributor+ Stored XSS in Shortcode — Easy Appointments 5.4 -2023-01-23
CVE-2022-4629 Product Slider for WooCommerce < 2.6.4 - Contributor+ Stored XSS in Shortcode — Product Slider for WooCommerce 5.4 -2023-01-23
CVE-2022-4672 WordPress Simple Shopping Cart < 4.6.2 - Contributor+ Stored XSS via Shortcode — WordPress Simple Shopping Cart 5.4 -2023-01-23
CVE-2022-4760 OneClick Chat to Order < 1.0.4.2 - Contributor+ Stored XSS via Shortcode — OneClick Chat to Order 5.4 -2023-01-23
CVE-2022-4625 Login Logout Menu < 1.4.0 - Contributor+ Stored XSS in Shortcode — Login Logout Menu 5.4 -2023-01-23

This page lists every published CVE security advisory associated with unknown. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.