0.001 Low
EPSS
Percentile
23.0%
The plugin does not sanitise and escape the Image URL field of the Media block, which could allow users with access to the plugin’s editor to perform Cross-Site Scripting attacks