CVE-2016-10998
CVE-2016-10998 affects the Ocim MP3 WordPress plugin (up to 2016-03-07). The issue is a reflected XSS in wp-content/plugins/ocim-mp3/source/pages.php?id=, caused by unsanitized input in the id parameter. Public exploit information (e.g., WPEX exploit entry) describes an unauthenticated XSS vector...