Formality — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Formality, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-48157	WordPress Formality <= 1.5.9 - Local File Inclusion Vulnerability CWE-98	8.1	High	2025-08-20
CVE-2025-3858	Formality <= 1.5.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via align Parameter CWE-79	6.4	Medium	2025-05-02
CVE-2025-24690	WordPress Formality Plugin <= 1.5.7 - Local File Inclusion vulnerability CWE-98	8.1	High	2025-03-26

All 3 known CVE vulnerabilities affecting Formality with full Chinese analysis, references, and POCs where available.