The E-goi Smart Marketing SMS and Newsletters Forms plugin before 2.0.0 for WordPress has XSS via the admin/partials/custom/egoi-for-wp-form_egoi.php url parameter.Referenceshttps://wordpress.org/plugins/smart-marketing-for-wp/#developershttps://wpvulndb.com/vulnerabilities/8974https://packetstormsecurity.com/files/145217/WordPress-Smart-Marketing-SMS-And-Newsletters-Forms-1.1.1-XSS.html
