CVE-2025-23759
CVE-2025-23759 is a reflected XSS vulnerability in the WordPress plugin Affiliate Tools Việt Nam (Leduchuy89VN) affecting versions up to 0.3.17. The issue stems from improper neutralization of input during web page generation. CVSS 3.1 base score 7.1 (HIGH) with network access, no privileges, and...