CVE-2015-2218
CVE-2015-2218 affects WonderPlugin Audio Player for WordPress (plugin versions before 2.1). The vulnerability is a set of cross-site scripting (XSS) flaws in the wp_ajax_save_item function and related admin paths, allowing remote attackers to inject arbitrary script or HTML via parameters: item[n...