2 matches found
CVE-2025-23835
CVE-2025-23835 (NotFound Legal +) is a Reflected XSS vulnerability caused by improper input neutralization during web page generation. Affected product: Legal + (NotFound Legal +) up to version 1.0. Exploitation details: attacker may lure a user to a crafted URL; successful exploit leads to scrip...
CVE-2025-23835 WordPress Legal + Plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jmraya Legal + legal-plus allows Reflected XSS.This issue affects Legal +: from n/a through = 1.0...