Flexmls® IDX — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Flexmls® IDX, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-25369	WordPress Flexmls® IDX plugin <= 3.15.9 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79	7.1	High	2026-03-16
CVE-2025-67585	WordPress Flexmls® IDX plugin <= 3.15.7 - Open Redirection vulnerability CWE-601	6.1^AI	Medium^AI	2025-12-09
CVE-2025-26900	WordPress Flexmls® IDX Plugin Plugin <= 3.14.27 - PHP Object Injection vulnerability CWE-502	9.8	Critical	2025-02-25

All 3 known CVE vulnerabilities affecting Flexmls® IDX with full Chinese analysis, references, and POCs where available.