The Helpie FAQ plugin for WordPress has a security vulnerability in versions up to 1.9.6. This vulnerability allows unauthenticated attackers to inject malicious web scripts into web pages. When a user visits one of these pages, the malicious script will execute, which can cause harm to users. It’s important to note that this only works in older browsers.