Details

Cross-site scripting (XSS) stored via a cross-site request forgery (CSRF) vulnerability discovered in the WordPress DX Share Select plugin (version <= 1.4).

solution

Deactivate and remove. This plugin is closed as of June 9, 2022 and cannot be downloaded.

Sources.

DX Share Selection