Ultimate Push Notifications — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Ultimate Push Notifications, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-50028	WordPress Ultimate Push Notifications plugin <= 1.2.0 - Broken Access Control Vulnerability CWE-862	6.5	Medium	2025-07-16
CVE-2025-31561	WordPress Ultimate Push Notifications plugin <= 1.2.0 - SQL Injection vulnerability CWE-89	8.5	High	2025-04-01
CVE-2025-31548	WordPress Ultimate Push Notifications plugin <= 1.2.0 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79	7.1	High	2025-04-01

All 3 known CVE vulnerabilities affecting Ultimate Push Notifications with full Chinese analysis, references, and POCs where available.