All 2 CVE vulnerabilities found in Userback, with AI-generated Chinese analysis, references, and POCs.
Vendor: Lee Le @ Userback
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-14540 | Userback <= 1.0.15 - Missing Authorization to Authenticated (Subscriber+) Plugin's Configuration Exposure CWE-862 | 4.3 | Medium | 2025-12-13 |
| CVE-2023-46089 | WordPress Userback Plugin <= 1.0.13 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 4.3 | Medium | 2023-10-22 |
All 2 known CVE vulnerabilities affecting Userback with full Chinese analysis, references, and POCs where available.