← Back to CVE List
CVE-2025-23798
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eliott Robson Mass Messaging in BuddyPress allows Reflected XSS. This issue affects Mass Messaging in BuddyPress: from n/a through 2.2.1.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt