EPSS
Percentile
26.9%
The plugin does not escape the Link Text and Button Text fields of Popup, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks
plugins.trac.wordpress.org/changeset/2610975
www.fortiguard.com/zeroday/FG-VD-21-069