CVE-2025-23657

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in RusAlex WordPress-to-candidate for Salesforce CRM salesforce-wordpress-to-candidate allows Reflected XSS.This issue affects WordPress-to-candidate for Salesforce CRM: from n/a through <= 1.0.1.