All 2 CVE vulnerabilities found in xPromoter, with AI-generated Chinese analysis, references, and POCs.
Vendor: LambertGroup
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49046 | WordPress xPromoter plugin <= 1.3.4 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2026-01-22 |
| CVE-2025-68053 | WordPress xPromoter plugin <= 1.3.4 - SQL Injection vulnerability CWE-89 | 8.5 | High | 2025-12-16 |
All 2 known CVE vulnerabilities affecting xPromoter with full Chinese analysis, references, and POCs where available.