WordPress Buddypress 6.2.0 Cross Site Scripting

WordPress plugin Buddypress version 6.2.0 suffers from a persistent cross site scripting vulnerability.