A vulnerability marked as problematic has been reported in Visitor Maps Extended Referer Field Plugin up to 1.2.6 on WordPress. Affected by this issue is some unknown functionality. The manipulation of the argument Referer leads to cross site scripting.
This vulnerability is traded as CVE-2025-69389. It is possible to initiate the attack remotely. There is no exploit available.
