Authenticated XSS Found in WordPress Plugin Facebook Widget
The WordPress plugin Facebook Widget (Widget for Facebook Page Feeds), which was recently closed on the WordPress plugin directory, is affected by an authenticated persistent Cross-Site Scripting (XSS), Plugin Vulnerabilities reports.
Read more: Authenticated XSS Found in WordPress Plugin Facebook Widget
Story added 29. July 2019, content source with full text you can find at link above.