Paolo Elia

**Name of the Vulnerable Software and Affected Versions** WP-Optimize WordPress plugin versions prior to 3.2.13 SrbTransLatin WordPress plugin versions prior to 2.4.1 **Description** The issue arises from the use of a third-party library that removes escaping on some HTML characters, leading to a cross-site scripting vulnerability. This allows for potential malicious script injection and execution. **Recommendations** For WP-Optimize WordPress plugin versions prior to 3.2.13, update to version 3.2.13 or later. For SrbTransLatin WordPress plugin versions prior to 2.4.1, update to version 2.4.1 or later.