CVE-2026-25356
The CVE-2026-25356 entry affects WordPress/Yobazar theme versions prior to 1.6.7, with a Reflected Cross-Site Scripting (XSS) flaw caused by improper input neutralization during web page generation. The issue enables an attacker to inject scripts that execute in other users’ browsers, aligning wi...