Riodrwn

**Name of the Vulnerable Software and Affected Versions** MS-Reviews WordPress plugin versions 1.5 and earlier **Description** The issue allows authenticated users, such as Subscribers, to perform Stored Cross-Site Scripting attacks due to the lack of sanitization and escaping of reviews. **Recommendations** For MS-Reviews WordPress plugin versions 1.5 and earlier, update to a version that properly sanitizes and escapes reviews to prevent Stored Cross-Site Scripting attacks.