The WordPress Multisite Content Copier/Updater WordPress plugin before 2.1.2 does not sanitise and escape the s parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in the network dashboardCreditsAsif Nawaz MinhasReferenceshttps://wpscan.com/vulnerability/b6d38e23-3761-4447-a794-1e5077fd953a
