Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Raad Haddad in WordPress Featured Image from URL plugin (versions <= 4.0.0).
Update the WordPress Featured Image from URL plugin to the latest available version (at least 4.0.1).