EPSS
Percentile
37.9%
The plugin does not sanitise and escape a parameter, which could lead to Stored Cross-Site Scriptingill execute whenever a user accesses an injected page.