Reflected Cross-Site Scripting (XSS) vulnerability discovered by Krzysztof Zając in WordPress Favicon by RealFaviconGenerator plugin (version <= 1.3.22).
Update the WordPress Favicon by RealFaviconGenerator plugin to the latest available version (at least 1.3.23).