The ad-minister WordPress plugin was affected by an Authenticated Cross-Site Scripting (XSS) security vulnerability.
packetstormsecurity.com/files/124604/
www.immuniweb.com/advisory/HTB23187