WordPress Plugin Page Restrict is prone to an open redirect vulnerability because the application fails to properly verify user-supplied input. Exploiting this issue may allow attackers to redirect users to arbitrary web sites and conduct phishing attacks; other attacks are also possible. WordPress Plugin Page Restrict version 2.2.3 is vulnerable; prior versions may also be affected.
Update to plugin version 2.2.4 or latest
WordPress Plugin MediaRSS external gallery TimThumb Arbitrary File Upload (0.1)
WordPress Plugin Unconfirmed Cross-Site Scripting (1.2.3)
WordPress Plugin aoringo TAG upper Cross-Site Scripting (0.1.6)
WordPress Plugin Fathom Analytics Cross-Site Scripting (3.0.4)
WordPress Plugin myCred-Points, Rewards, Gamification, Ranks, Badges & Loyalty Cross-Site Scripting (2.3.2)