Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Truoc Phan in WordPress WP Customer Reviews plugin (versions <= 3.5.5).
Update the WordPress WP Customer Reviews plugin to the latest available version (at least 3.5.6).