Reflected Cross-Site-Scripting (XSS) vulnerability discovered by cydave in WordPress Shortcodes and extra features for Phlox theme plugin (versions <= 2.9.7).
Update the WordPress Shortcodes and extra features for Phlox theme plugin to the latest available version (at least 2.9.8).