The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes, leading to XSS.Referenceshttps://www.exploit-db.com/exploits/44444/https://www.iptanus.com/new-version-4-3-4-of-wordpress-file-upload-plugin/https://wordpress.org/plugins/wp-file-upload/#developers
