CVE-2025-23707
CVE-2025-23707 is a reflected Cross‑Site Scripting (XSS) vulnerability in the WordPress plugin En Masse . Public details show the flaw affects the plugin version range “from n/a through 1.0” and stem from improper input neutralization during web page generation. Multiple sources (NVD, Red Hat CVE...