Functions/EWD_UFAQ_Import.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows HTML content injection.
Published October 8, 2019.
Etoilewebdesign Ultimate Faq
