CVE-2025-23835
CVE-2025-23835 (NotFound Legal +) is a Reflected XSS vulnerability caused by improper input neutralization during web page generation. Affected product: Legal + (NotFound Legal +) up to version 1.0. Exploitation details: attacker may lure a user to a crafted URL; successful exploit leads to scrip...