WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports the hosting of personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress WooCommerce Affiliate plugin version prior to 4.16.4.5 has a cross-site scripting vulnerability, which stems from the program’s lack of The vulnerability is caused by a lack of user-supplied data and output data validation filtering. An attacker could exploit this vulnerability to execute JavaScript code on the client side.