Description
This script is possibly vulnerable to Cross Frame Scripting (XFS) attacks.
This is an attack technique used to trick a user into thinking that fake web site content is legitimate data.
Remediation
Your script should filter metacharacters from user input.
References
Related Vulnerabilities
WordPress Plugin The Events Calendar Cross-Site Scripting (4.8.1)
WordPress Plugin Backup Migration Cross-Site Scripting (1.1.5)
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.8)
WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.34)
WordPress Plugin Export Post Info Cross-Site Scripting (1.1.0)