CVE-2025-23741
CVE-2025-23741 is a reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Notifications Center . Affected versions are up to and including 1.5.2 . The issue arises from improper neutralization of input during web page generation, enabling reflected XSS. CVSS‑3.1 data shows: A...