CVE-2025-23874

CVE-2025-23874 – Reflected Cross‑Site Scripting in NotFound WP Block Pack (WP Block Pack). Affected: WP Block Pack versions up to 1.1.6 (noted as NotFound Block Pack). Public references in the data set include Red Hat’s RH:CVE-2025-23874 and Wordfence vulnerability listings for Block Pack under C...