The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[enabled_languages][en] or wpglobus_option[enabled_languages][fr] (or any other language) parameter to wp-admin/options.php.Referenceshttps://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.mdhttps://wpvulndb.com/vulnerabilities/9003
