WordPress Plugin “Heateor Social Login WordPress” provided by Heateor contains a stored cross-site scripting vulnerability (CWE-79).
An arbitrary script may be executed on the web browser of the user who accessed the website using the product.
Update the plugin
Update the plugin to the latest version according to the information provided by the developer.