Reflected Cross-Site Scripting (XSS) vulnerability discovered by Chloe Chamberland (Wordfence) in WordPress Profile Builder plugin (versions <= 3.6.1).
Update the WordPress Profile Builder plugin to the latest available version (at least 3.6.2).