Details

Update to arbitrary configuration via CSRF vulnerability against StoredXSS discovered in the WordPress page bar plugin (version <= 2.65)

solution

Deactivate and remove. This plugin has been closed as of June 14, 2022 and is no longer available for download. This closure is temporary and pending full review.

Sources.

Pagebar