All 6 CVE vulnerabilities found in User Feedback, with AI-generated Chinese analysis, references, and POCs.
Vendor: UserFeedback Team
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2026-39476 | WordPress User Feedback plugin <= 1.10.1 - Broken Access Control vulnerability CWE-862 | 8.2AI | HighAI | 2026-04-08 |
| CVE-2026-39475 | WordPress User Feedback plugin <= 1.10.1 - SQL Injection vulnerability CWE-89 | 9.8AI | CriticalAI | 2026-04-08 |
| CVE-2025-68496 | WordPress User Feedback plugin <= 1.10.0 - SQL Injection vulnerability CWE-89 | 7.6 | High | 2025-12-24 |
| CVE-2023-50887 | WordPress User Feedback plugin <= 1.0.10 - Broken Access Control vulnerability CWE-862 | 7.1 | - | 2024-12-09 |
| CVE-2023-46153 | WordPress User Feedback Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 7.1 | High | 2023-10-27 |
| CVE-2023-39308 | WordPress User Feedback Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 7.1 | High | 2023-09-29 |
All 6 known CVE vulnerabilities affecting User Feedback with full Chinese analysis, references, and POCs where available.