Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Asif Nawaz Minhas in WordPress Floating Social Media Icon plugin (versions <= 4.3.5).
Deactivate and delete. This plugin has been closed as of October 27, 2021 and is not available for download. This closure is temporary, pending a full review.