CVE-2022-1216 Advanced Image Sitemap <= 1.2 - Reflected Cross-Site Scripting
The Advanced Image Sitemap WordPress plugin through 1.2 does not sanitise and escape the PHPSELF PHP variable before outputting it back in an attribute in an admin page, leading to Reflected Cross-Site Scripting...