A vulnerability labeled as problematic has been found in broadstreetads Broadstreet Plugin up to 1.53.1 on WordPress. Impacted is an unknown function of the component Setting Handler . Executing a manipulation can lead to cross site scripting. This vulnerability appears as CVE-2025-9989 . The attack may be performed from remote. There is no available exploit.