Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

unspecified — Vulnerabilities & Security Advisories 259

Browse all 259 CVE security advisories affecting unspecified. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The term "unspecified" in cybersecurity contexts typically refers to software components, libraries, or hardware modules where the vendor or manufacturer has not been publicly identified or disclosed. This anonymity often complicates vulnerability tracking, resulting in a significant backlog of assigned CVEs, currently totaling 259. Historically, these unidentified assets frequently exhibit critical flaws such as remote code execution, cross-site scripting, and privilege escalation vulnerabilities, stemming from a lack of standardized security development lifecycles. The absence of clear attribution hinders coordinated patching efforts and incident response, leaving downstream users exposed to prolonged risk. Notable incidents involving unspecified components often involve supply chain attacks or zero-day exploits where the origin remains obscure until forensic analysis reveals the underlying architecture. This opacity creates a persistent threat landscape, as defenders cannot implement targeted mitigations without knowing the specific software stack or vendor context associated with the vulnerability.

Top products by unspecified: ffmpeg Hindu Matrimonial Script PHPList unspecified Movie Ticket Booking System Home Clean Services Management System uTorrent HumHub jenkins House Rental System GPAC studygolang WP-Ban LibTIFF School Club Application System phpservermon Zoo Management System Demokratian Online Hotel Booking System laravel Open5GS MAVLink Exim ovirt-engine 389-ds-base Simplessus Hospital Management Center Student Attendance Management System Atahualpa Theme Student Information System
CVE IDTitleCVSSSeverityPublished
CVE-2022-2664 Private Cloud Management Platform POST Request global_config_query improper authentication — Private Cloud Management PlatformCWE-287 7.3 High2022-08-05
CVE-2022-2647 jeecg-boot unrestricted upload — jeecg-bootCWE-434 7.3 High2022-08-04
CVE-2016-15004 InfiniteWP Client Plugin injection — InfiniteWP Client PluginCWE-74 7.3 High2022-07-23
CVE-2017-20129 LogoStore search.php sql injection — LogoStoreCWE-89 6.3 Medium2022-07-14
CVE-2017-20128 KB Messages PHP Script sql injection — KB Messages PHP ScriptCWE-89 7.3 High2022-07-13
CVE-2017-20127 KB Login Authentication Script sql injection — KB Login Authentication ScriptCWE-89 7.3 High2022-07-13
CVE-2017-20126 KB Affiliate Referral Script index.php sql injection — KB Affiliate Referral ScriptCWE-89 7.3 High2022-07-13
CVE-2022-2263 Online Hotel Booking System Room edit_room_cat.php sql injection — Online Hotel Booking SystemCWE-89 4.7 Medium2022-07-12
CVE-2022-2262 Online Hotel Booking System Room edit_all_room.php sql injection — Online Hotel Booking SystemCWE-89 4.7 Medium2022-07-12
CVE-2017-20125 Online Hotel Booking System Pro roomtype-details.php sql injection — Online Hotel Booking System ProCWE-89 6.3 Medium2022-06-30
CVE-2017-20124 Online Hotel Booking System Pro Plugin roomtype-details.php sql injection — Online Hotel Booking System Pro PluginCWE-89 6.3 Medium2022-06-30
CVE-2017-20123 Viscosity DLL untrusted search path — ViscosityCWE-426 8.8 High2022-06-30
CVE-2017-20108 Easy Table Plugin options-general.php cross site scripting — Easy Table PluginCWE-80 3.5 Low2022-06-29
CVE-2017-20105 Simplessus path traversal — SimplessusCWE-22 5.4 Medium2022-06-28
CVE-2017-20104 Simplessus Cookie Time sql injection — SimplessusCWE-89 7.3 High2022-06-28
CVE-2017-20103 Kama Click Counter Plugin admin.php Blind sql injection — Kama Click Counter PluginCWE-89 6.3 Medium2022-06-27
CVE-2017-20098 Admin Custom Login Plugin Persistent cross site scripting — Admin Custom Login PluginCWE-80 3.5 Low2022-06-27
CVE-2017-20099 Analytics Stats Counter Statistics Plugin code injection — Analytics Stats Counter Statistics PluginCWE-94 7.3 High2022-06-27
CVE-2017-20102 Album Lock getImage path traversal — Album LockCWE-22 4.4 Medium2022-06-27
CVE-2017-20101 ProjectSend information disclosure — ProjectSendCWE-200 3.5 Low2022-06-27
CVE-2017-20100 Air Transfer cross site scripting — Air TransferCWE-80 3.5 Low2022-06-27
CVE-2017-20097 WP-Filebase Download Manager Plugin cross site scriting — WP-Filebase Download Manager PluginCWE-80 3.5 Low2022-06-24
CVE-2017-20096 WP-SpamFree Anti-Spam Plugin cross site scriting — WP-SpamFree Anti-Spam PluginCWE-80 3.5 Low2022-06-24
CVE-2017-20095 Simple Ads Manager Plugin code injection — Simple Ads Manager PluginCWE-94 6.3 Medium2022-06-24
CVE-2017-20094 NewStatPress Plugin Persistent cross site scriting — NewStatPress PluginCWE-80 3.5 Low2022-06-24
CVE-2017-20093 Download Manager Plugin cross-site request forgery — Download Manager PluginCWE-352 4.3 Medium2022-06-24
CVE-2017-20092 Google Analytics Dashboard Plugin cross site scriting — Google Analytics Dashboard PluginCWE-80 3.5 Low2022-06-24
CVE-2017-20091 File Manager Plugin cross-site request forgery — File Manager PluginCWE-352 4.3 Medium2022-06-23
CVE-2017-20090 Global Content Blocks Plugin cross-site request forgery — Global Content Blocks PluginCWE-352 4.3 Medium2022-06-23
CVE-2017-20089 Gwolle Guestbook Plugin cross site scriting — Gwolle Guestbook PluginCWE-80 3.5 Low2022-06-23

This page lists every published CVE security advisory associated with unspecified. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.