Description The plugin does not sanitise and escape some of its Slider settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks
The PoC will be displayed on June 26, 2024, to give users the time to update.