EPSS
Percentile
31.7%
The plugins do not escape some URLs and parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting