CVE-2025-27354
CVE-2025-27354 affects WordPress plugin Simple Email Subscriber (versions n/a–2.3). All connected sources confirm a Cross-Site Scripting (Reflected XSS) flaw arising from improper input neutralization during web page generation. The CVE description states the issue as a Reflected XSS vulnerabilit...