CVE-2019-14946
CVE-2019-14946 affects the WordPress plugin Ultimate Member (before 2.0.52). It is an XSS vulnerability in UM Roles create/edit operations. Related sources also describe a CSRF alongside stored XSS; a fix was released in v2.0.52 to address these issues.