CVE-2018-16259 (wp_all_import)

There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-settings large_feed_limit.
Source: NIST
CVE-2018-16259 (wp_all_import)