WordPress · Feedwordpress · CVE-2015-9358
**Name of the Vulnerable Software and Affected Versions**
feedwordpress plugin versions prior to 2015.0514
**Description**
The issue concerns a cross-site scripting (XSS) problem. It is related to the use of `add query arg()` and `remove query arg()` functions.
**Recommendations**
For versions prior to 2015.0514, update to version 2015.0514 or later to resolve the issue.