Not_Stoppable

**Name of the Vulnerable Software and Affected Versions** Google Tag Manager for WordPress plugin for WordPress versions up to and including 1.15 **Description** The issue is related to reflected Cross-Site Scripting via the `s` parameter, which is caused by insufficient sanitization in the site search populating into the data layer of sites. This could be exploited by unauthenticated attackers. The affected file is `~/public/frontend.php`. **Recommendations** For versions up to and including 1.15, update to a version that includes proper sanitization to prevent Cross-Site Scripting attacks. As a temporary workaround, consider restricting access to the `~/public/frontend.php` file to minimize the risk of exploitation. Avoid using the `s` parameter in the affected site search functionality until the issue is resolved.