Cross-Site Scripting (XSS) vulnerability found by Yuji Tounai in WordPress Import any XML or CSV File to WordPress plugin (versions <=3.4.6).
Update the WordPress Import any XML or CSV File to WordPress plugin to the latest available version (at least 3.4.7).