Stored Cross-Site Scripting (XSS) vulnerability was discovered by Hitesh Kumar in WordPress Drag & Drop Builder plugin (versions <= 1.4.9.3).
Update the WordPress Drag & Drop Builder plugin to the latest available version (at least 1.4.9.4).