Visual Link Preview — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in Visual Link Preview, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-39670	WordPress Visual Link Preview plugin <= 2.3.0 - Server Side Request Forgery (SSRF) vulnerability CWE-918	9.1^AI	Critical^AI	2026-04-08
CVE-2026-24984	WordPress Visual Link Preview plugin <= 2.2.9 - Broken Access Control vulnerability CWE-862	8.2^AI	High^AI	2026-02-03
CVE-2025-11987	Visual Link Preview <= 2.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via visual-link-preview Shortcode CWE-80	6.4	Medium	2025-11-05
CVE-2021-24635	Visual Link Preview < 2.2.3 - Unauthorised AJAX Calls CWE-284	5.4	-	2021-09-20

All 4 known CVE vulnerabilities affecting Visual Link Preview with full Chinese analysis, references, and POCs where available.