CVE-2017-18493

The custom-admin-page plugin before 0.1.2 for WordPress has multiple XSS issues.
Source: NIST
CVE-2017-18493