WordPress Plugin Glass is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Glass version 1.3.2 is vulnerable; prior versions may also be affected.
Edit the source code to ensure that CSRF protection is implemented with Nonce-like mechanism or disable the plugin until a fix is available
WordPress 2.0.5 Charset Decoding SQL Injection Vulnerability (0.6.2 - 2.0.5)
WordPress Plugin AJAX Random Post Cross-Site Scripting (2.00)
WordPress Plugin Role Scoper Cross-Site Scripting (1.3.66)
WordPress Plugin Charitable-Donation Cross-Site Scripting (1.6.50)
WordPress Plugin BackUpWordPress Remote File Inclusion (0.4.2b)