CVE-2017-18608

The spotim-comments plugin before 4.0.4 for WordPress has multiple XSS issues.