The bradesco-gateway WordPress plugin was affected by a falha.php URI Reflected XSS security vulnerability.
packetstormsecurity.com/files/123356/