WordPress Plugin Ultimate Member-User Profile, User Registration, Login & Membership is prone to an open redirect vulnerability because the application fails to properly verify user-supplied input. Exploiting this issue may allow attackers to redirect users to arbitrary web sites and conduct phishing attacks; other attacks are also possible. WordPress Plugin Ultimate Member-User Profile, User Registration, Login & Membership version 2.0.33 is vulnerable; prior versions are also affected.
Update to plugin version 2.0.34 or latest
WordPress Plugin Yakadanda Google+ Hangout Events Cross-Site Scripting (0.3.7)
WordPress Plugin ZX_CSV Upload Multiple Vulnerabilities (1)
WordPress Plugin Essential Widgets Security Bypass (1.8)
WordPress Plugin Survey Maker-Best WordPress Survey SQL Injection (1.5.5)