WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The WordPress Plugin is a WordPress open source application plugin that supports personal blogging sites on PHP and MySQL servers. Manager fails to clean up or escape its “php_id” setting before exporting it back to the properties on the page, leading to a stored cross-site scripting issue. No details of the vulnerability are currently available.