Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Rafshanzani Suhada in WordPress WP Comments Fields plugin (versions <= 4.0).
Update the WordPress WordPress Comments Fields plugin to the latest available version (at least 4.1).