Attribute-based Reflected Cross-Site Scripting (XSS) vulnerability discovered by Thinkland Security Team in WordPress SP Project & Document Manager plugin (versions <= 4.25).
Update the WordPress SP Project & Document Manager plugin to the latest available version (at least 4.26).