EPSS
Percentile
32.5%
The plugin does not escape the page parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting
www.wordfence.com/blog/2022/02/reflected-xss-in-header-footer-code-manager/