Reflected Cross-Site Scripting (XSS) vulnerability discovered by p7e4 in WordPress Custom Post Type Relations plugin (<= 1.0).
This plugin has been closed as of August 12, 2021 and is not available for download. This closure is temporary, pending a full review.