WordPress Magic Post Voice plugin cross-site scripting vulnerability

WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on PHP and MySQL servers. magic Post Voice plugin is a WordPress open source application plugin. the WordPress Magic Post Voice plugin has a cross-site scripting vulnerability that stems from ~/inc/admin/main.php’s lack of data validation filtering for user provided and output data validation filtering. An attacker could use this vulnerability to execute JavaScript code on the client side.