WordPress Plugin Post-Duplicator Plugin Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is a WordPress application plugin. WordPress Plugin Post-Duplicator Plugin 2.23 is vulnerable to a cross-site scripting vulnerability, which stems from an XSS payload given in the “Duplicate Title” text box that is executed whenever a user opens the settings page or application root page of the Post Duplicator plugin after copying any existing post. opens the settings page of the Post Duplicator plugin or the application root page, the XSS payload given in the “Duplicate Title” text box is executed. An attacker could exploit this vulnerability to cause arbitrary code (JavaScript) to run in the user’s browser.