The Team Members Plugin for WordPress, which was available up to version 2.2.3, was vulnerable to Stored Cross-Site Scripting. This kind of vulnerability can allow an attacker with contributor-level or higher permissions to insert malicious code into pages of a website. When users access these pages, the malicious code will be executed. This can have serious consequences for the website.