CVE-2019-9669 (wordfence)

The Wordfence plugin 7.2.3 for WordPress allows XSS via a unique attack vector.
Source: NIST
CVE-2019-9669 (wordfence)