0.001 Low
EPSS
Percentile
34.0%
Unescaped src and href attribute replacements allows breaking out of the generated replacement tags.
A comment containing the following "image" http://codeseekah.com/1.jpg"onload="alert(1)".jpg will generate an alert box.
plugins.trac.wordpress.org/changeset/1714313/embed-comment-images