CVE-2025-9852 | Yoga Schedule Momoyoga Plugin up to 2.9.0 on WordPress Shortcode momoyoga-schedule cross site scripting

A vulnerability marked as problematic has been reported in Yoga Schedule Momoyoga Plugin up to 2.9.0 on WordPress. Impacted is the function momoyoga-schedule of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-9852. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More