Microwerber prior to version 1.2.20 is vulnerable to stored Cross-site Scripting (XSS).
microweber/microweber