A vulnerability classified as problematic has been found in HTML Forms Plugin up to 1.5.5 on WordPress. The impacted element is an unknown function of the component Setting Handler. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-12125. The attack is possible to be carried out remotely. No exploit exists.
