0.001 Low
EPSS
Percentile
34.0%
The plugin does not escape the page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting
www.wordfence.com/blog/2021/10/xss-vulnerability-in-nextscripts-social-networks-auto-poster-plugin-impacts-100000-sites/