WordPress Plugin Chat Room is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Chat Room version 0.1.2 is vulnerable; prior versions may also be affected.
Update to plugin version 0.1.3 or latest
WordPress Plugin Simple Banner Cross-Site Scripting (2.11.0)
WordPress Plugin Ultimate WP Query Search Filter Cross-Site Scripting (1.0.10)
WordPress Plugin Html5 Audio Player-Audio Player for WordPress Cross-Site Scripting (2.1.2)