CVE-2018-20978

CVE-2018-20978

The wp-all-import plugin before 3.4.7 for WordPress has XSS.

Source: CVE-2018-20978