Authenticated Cross-Site Scripting (XSS) vulnerability found by Chris Liu in WordPress Simple Custom CSS and JS plugin version 3.3 and earlier versions.
Update WordPress Simple Custom CSS and JS plugin to the latest available version (at least 3.4).