CVE-2025-23798
CVE-2025-23798 affects the WordPress Mass Messaging in BuddyPress plugin (versions n/a through 2.2.1). The vulnerability is a Reflected Cross-Site Scripting (XSS) due to improper neutralization of inputs during web page generation. Connected sources confirm the affected product and versions, and ...