LeadBI Plugin for WordPress — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in LeadBI Plugin for WordPress, with AI-generated Chinese analysis, references, and POCs.

Vendor: leadbi

CVE ID	Title	CVSS	Severity	Published
CVE-2026-1189	LeadBI Plugin for WordPress <= 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'form_id' Shortcode Attribute CWE-79	6.4	Medium	2026-01-24
CVE-2025-49960	WordPress LeadBI Plugin for WordPress plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability CWE-79	5.4^AI	Medium^AI	2025-10-22

All 2 known CVE vulnerabilities affecting LeadBI Plugin for WordPress with full Chinese analysis, references, and POCs where available.