WordPress Plugin Easing Slider is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks. WordPress Plugin Easing Slider version 22.214.171.124 is vulnerable; prior versions may also be affected.
Update to plugin version 126.96.36.199 or latest
WordPress Plugin WP iCommerce-the first interactive ecommerce for wordpress SQL Injection (1.1.1)
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.9)
WordPress Plugin Aoi Tori Cross-Site Scripting (1.1)
WordPress Plugin WP Fusion Lite-Marketing Automation for WordPress Multiple Vulnerabilities (3.37.18)
WordPress Plugin Auctions 'upload.php' Arbitrary File Upload (188.8.131.52)