WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress plugin Optimole version 3.3.2 has a cross-site scripting vulnerability that stems from the failure of image optimization and delayed loading to clean up and escape its The vulnerability is caused by the failure of Image Optimization and Delayed Loading to clean up and escape its “Delayed Loading Background Image for Selector” setting, which can be exploited by attackers to perform cross-site scripting attacks.