POEditor — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in POEditor, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-49237	WordPress POEditor plugin <= 0.9.10 - CSRF to Arbitrary File Deletion vulnerability CWE-352	7.4	High	2025-06-06
CVE-2024-32453	WordPress POEditor plugin <= 0.9.8 - Cross Site Scripting (XSS) vulnerability CWE-79	5.9	Medium	2024-04-15
CVE-2023-32091	WordPress POEditor Plugin <= 0.9.4 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352	5.4	Medium	2023-10-03
CVE-2023-4209	POEditor < 0.9.8 - Settings Reset via CSRF	4.3	-	2023-08-30

All 4 known CVE vulnerabilities affecting POEditor with full Chinese analysis, references, and POCs where available.