YayExtra — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in YayExtra, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-48299	WordPress YayExtra plugin <= 1.5.5 - SQL Injection Vulnerability CWE-89	7.6	High	2025-07-16
CVE-2025-31415	WordPress YayExtra <= 1.5.2 - Broken Access Control Vulnerability CWE-862	7.6	High	2025-04-01

All 2 known CVE vulnerabilities affecting YayExtra with full Chinese analysis, references, and POCs where available.