CVE-2022-1512

The ScrollReveal.js Effects WordPress plugin through 1.2 does not sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed > MITRE Terms of Use apply – see LICENSE‑MITRE.txt