Massive WordPress Plugin Vulnerability Exposes Millions to XSS Attacks

The vulnerability, tracked as CVE-2025-24752, is a reflected Cross-Site Scripting (XSS) issue that could allow malicious actors to inject harmful scripts into unsuspecting users’ browsers.