CVE-2025-8902 | Widget Options Extended Plugin up to 5.2.1 on WordPress do_sidebar cross site scripting

September 22, 2025 Yanac

A vulnerability, which was classified as problematic, was found in Widget Options Extended Plugin up to 5.2.1 on WordPress. Impacted is the function do_sidebar. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2025-8902. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-58918 | Entrada Plugin up to 5.7.7 on WordPress cross-site request forgery
CVE-2025-58619 | sbouey Falang Multilanguage Plugin up to 1.3.65 on WordPress deserialization