Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by cydave in WordPress Coupon Affiliates plugin (versions <= 4.16.4.4).
Update the WordPress Coupon Affiliates plugin to the latest available version (at least 4.16.4.5).