CVE-2014-4514
CVE-2014-4514 describes a cross-site scripting (XSS) vulnerability in the WordPress Alipay plugin (versions 3.6.0 and earlier) affecting includes/api_tenpay/inc.tenpay_notify.php. The issue allows remote attackers to inject arbitrary script/HTML via vectors related to the getDebugInfo function. A...