0.001 Low
EPSS
Percentile
41.5%
The plugin does not sanitise and escape the wahi parameter before outputting back its base64 decode value in the page, leading to a Reflected Cross-Site Scripting issue
https://example.com/?wahi=JzthbGVydCgxKTsvLw==
plugins.trac.wordpress.org/changeset/2661008