5 matches found
CVE-2025-23657
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RusAlex WordPress-to-candidate for Salesforce CRM salesforce-wordpress-to-candidate allows Reflected XSS.This issue affects WordPress-to-candidate for Salesforce CRM: from n/a through = 1.0.1...
CVE-2025-23657
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RusAlex WordPress-to-candidate for Salesforce CRM salesforce-wordpress-to-candidate allows Reflected XSS.This issue affects WordPress-to-candidate for Salesforce CRM: from n/a through = 1.0.1...
CVE-2025-23657
CVE-2025-23657 is a Reflected XSS in the WordPress-to-candidate for Salesforce CRM plugin (notFound) affecting versions up to 1.0.1. The issue arises from improper input neutralization during web page generation, enabling reflected input to execute scripts in a user’s browser. CVSS 3.1 base score...
CVE-2025-23657 WordPress WordPress-to-candidate for Salesforce CRM plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RusAlex WordPress-to-candidate for Salesforce CRM salesforce-wordpress-to-candidate allows Reflected XSS.This issue affects WordPress-to-candidate for Salesforce CRM: from n/a through = 1.0.1...
CVE-2025-23657 WordPress WordPress-to-candidate for Salesforce CRM plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RusAlex WordPress-to-candidate for Salesforce CRM salesforce-wordpress-to-candidate allows Reflected XSS.This issue affects WordPress-to-candidate for Salesforce CRM: from n/a through = 1.0.1...