WordPress Plugin Store / AccessPress Themes WP Floating Menu V1.3.0 is affected by: Cross Site Scripting (XSS) via the id GET parameter.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25378
Reference (s):
- https://zeroaptitude.com/misha/wordpress-plugin-bug-hunting-part-2/