CVE-2015-9472
The incoming-links plugin before 0.9.10b for WordPress has referrers.php XSS via the Referer HTTP header.
6.1CVSS
6AI Score
0.001EPSS