Authenticated Stored Cross-Site Scripting (XSS) vulnerability via SVG file upload discovered by Rizacan Tufan in WordPress TaskBuilder plugin (versions <= 1.0.7).
Update the WordPress Taskbuilder plugin to the latest available version (at least 1.0.8).