The Station Pro plugin for WordPress has a security vulnerability that could allow attackers to inject harmful web scripts into pages. This vulnerability affects all versions of the plugin up to and including version 2.4.2. The issue is caused by not properly cleaning up user input, which means that unauthorized individuals with Contributor-level access or higher could insert malicious scripts that will run when someone visits the affected page.