WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports setting up personal blogging sites on servers with PHP and MySQL. WordPress plugin is a WordPress open source application plugin. WordPress Insights from Google PageSpeed plugin has a cross-site scripting vulnerability that stems from the fact that various parameters are exported back to the The plugin does not clean up and escape the properties of the dashboard before setting them. An attacker could exploit this vulnerability to execute JavaScript code on the client side.