WordPress Plugin Everest GPlaces Business Reviews [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Everest GPlaces Business Reviews version 1.0.9 is vulnerable; prior versions may also be affected.
Update to plugin version 2.0.0 or latest
WordPress Plugin Hot Files:File Sharing and Download Manager Cross-Site Scripting (1.0.0)
WordPress Plugin Role Scoper Cross-Site Scripting (1.3.66)
WordPress Plugin Customer Service Software & Support Ticket System Cross-Site Scripting (5.5.1)
WordPress Plugin WP User-Custom Registration Forms, Login and User Profile Multiple Vulnerabilities (7.0)
WordPress Plugin Login With Ajax Cross-Site Request Forgery (22.214.171.124)