GLS Shipping for WooCommerce — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in GLS Shipping for WooCommerce, with AI-generated Chinese analysis, references, and POCs.

Vendor: GLS

CVE ID	Title	CVSS	Severity	Published
CVE-2026-6417	GLS Shipping for WooCommerce <= 1.4.0 - Reflected Cross-Site Scripting via 'failed_orders' CWE-79	6.1	Medium	2026-05-14
CVE-2025-68011	WordPress GLS Shipping for WooCommerce plugin <= 1.4.0 - Cross Site Scripting (XSS) vulnerability CWE-79	7.1	High	2026-01-22

All 2 known CVE vulnerabilities affecting GLS Shipping for WooCommerce with full Chinese analysis, references, and POCs where available.