CVE-2025-23676 WordPress LH Email plugin <= 1.12 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in shawfactor LH Email lh-email allows Reflected XSS.This issue affects LH Email: from n/a through = 1.12...

CVE-2025-23676

CVE-2025-23676 affects LH Email (WordPress LH Email plugin). The Red Hat advisory notes an Improper Neutralization of Input leading to Reflected XSS in LH Email up to version 1.12. The vulnerability is described as Reflected XSS in LH Email with unpatched status per the LH Email entry. Connected ...

WordPress plugin LH Email 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress LH Email plugin <= 1.12 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin LH Email versions = 1.12...