Comments Import & Export — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Comments Import & Export, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-32441	WordPress Comments Import & Export plugin <= 2.4.9 - Broken Access Control vulnerability CWE-862	7.7	High	2026-03-25
CVE-2025-3919	WordPress Comments Import & Export <= 2.4.3 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting CWE-79	6.4	Medium	2025-06-02
CVE-2024-7514	WordPress Comments Import & Export <= 2.3.7 - Authenticated (Author+) Arbitrary File Read via Directory Traversal CWE-22	6.5	Medium	2024-10-11

All 3 known CVE vulnerabilities affecting Comments Import & Export with full Chinese analysis, references, and POCs where available.