Any logged in user with any role and access to wp-admin in any way can update plugin settings including allowing HTML to be parsed. One can also change any notification messages to include JS which then can be used to obtain information by forgery.
Make POST request to /wp-admin with parameters sola_st_save_settings:1 sola_st_settings_allow_html:1 sola_st_settings_thank_you_text:
CPE | Name | Operator | Version |
---|---|---|---|
sola-support-tickets | lt | 3.13 |