Surfer — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Surfer, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-58603	WordPress Surfer Plugin <= 1.6.4.574 - Broken Access Control Vulnerability CWE-862	5.3	Medium	2025-09-03
CVE-2023-35037	WordPress Surfer plugin <= 1.3.2.357 - Broken Access Control vulnerability CWE-862	8.1	-	2024-12-13
CVE-2024-49299	WordPress Surfer plugin <= 1.5.0.502 - SQL Injection vulnerability CWE-89	7.6	High	2024-10-17

All 3 known CVE vulnerabilities affecting Surfer with full Chinese analysis, references, and POCs where available.