All 2 CVE vulnerabilities found in Quote Comments, with AI-generated Chinese analysis, references, and POCs.
Vendor: Stanko Metodiev
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-14370 | Quote Comments <= 3.0.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Update CWE-862 | 4.3 | Medium | 2026-01-07 |
| CVE-2025-25156 | WordPress Quote Comments plugin <= 3.0.0 - CSRF to Stored XSS vulnerability CWE-352 | 7.1 | High | 2025-02-07 |
All 2 known CVE vulnerabilities affecting Quote Comments with full Chinese analysis, references, and POCs where available.