WordPress Plugin Cross-Site Scripting Vulnerability (CNVD-2021-59595)

WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. Smooth Scroll Page Up/Down Buttons WordPress plugin version 1.4 has a cross-site scripting vulnerability, which stems from the plugin not properly The vulnerability is caused by the plugin does not properly clean and verify its psb_positioning settings, an attacker can use this vulnerability through the administrator and other high-powered users in which to set the XSS load.