CVE-2015-4557
CVE-2015-4557 is an XSS vulnerability in the Nextend Twitter Connect WordPress plugin, present before version 1.5.2. The issue is triggered via the redirect_to parameter in the function new_Twitter_sign_button in nextend-Twitter-connect.php, allowing injection of arbitrary script/HTML. The relate...