The FeedWordPress WordPress plugin was affected by a XSS & SQL-Injection security vulnerability.
packetstormsecurity.com/files/131974/
seclists.org/fulldisclosure/2015/May/75
vulners.com/exploitdb/EDB-ID:37067