CVE-2025-9371 | Betheme Plugin up to 28.1.6 on WordPress page_title cross site scripting

October 9, 2025 Yanac

A vulnerability classified as problematic has been found in Betheme Plugin up to 28.1.6 on WordPress. The impacted element is an unknown function. This manipulation of the argument page_title causes cross site scripting.

This vulnerability is tracked as CVE-2025-9371. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-10249 | Slider Revolution Plugin up to 6.7.37 on WordPress authorization
CVE-2025-10862 | Popup Builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers Plugin sql injection