A vulnerability has been found in designthemes SpaLab Plugin up to 6.7 on WordPress and classified as problematic. The impacted element is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-69154. The attack may be initiated remotely. There is no available exploit.