The Payment Form for PayPal Pro WordPress plugin was affected by a Multiple Reflected Cross-Site Scripting (XSS) security vulnerability.
packetstormsecurity.com/files/133857/