CVE-2025-9861 | ThemeLoom Widgets Plugin up to 1.8.5 on WordPress los_showposts cross site scripting

A vulnerability marked as problematic has been reported in ThemeLoom Widgets Plugin up to 1.8.5 on WordPress. This vulnerability affects the function los_showposts. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-9861. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More