0.001 Low
EPSS
Percentile
32.2%
The plugin does not properly sanitize and escape input in email subjects, leading to potential Stored Cross-Site Scripting issues.
www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/lana-email-logger/lana-email-logger-102-unauthenticated-stored-cross-site-scripting-via-email-subject