vuln to XSS in settings page

The Accounting for WooCommerce plugin contains an XSS vulnerability in its settings, allowing attackers to inject malicious JavaScript code. This could lead to unauthorized control or harmful actions on the website.

1. Install and activate the plugin
2. Insert "autofocus onfocus=alert(1) x=1 to the field "Book name" in the setting
3. Enter save changes to run XSS