CVE-2020-35944
An issue was discovered in the PageLayer plugin before 1.1.2 for WordPress. The pagelayer_settings_page function is vulnerable to CSRF, which can lead to XSS.
Date published : 2020-12-31
https://wpscan.com/vulnerability/10240
High Severity Vulnerabilities in PageLayer Plugin Affect Over 200,000 WordPress Sites