CVE-2015-9376
The CVE-2015-9376 entry concerns iThemes Mobile for WordPress (before 1.2.8). The underlying issue is an XSS in add_query_arg() and remove_query_arg() that can be triggered through the affected plugin. Impact is XSS (as stated in multiple sources); exploitation details are not provided in the doc...