XSS via the phpwhois (https://github.com/phpWhois/phpWhois) component, which is also affected by a RCE apparently (https://github.com/phpWhois/phpWhois/issues/34). It is unclear whether or not the issue has been fixed in the plugin.
CPE | Name | Operator | Version |
---|---|---|---|
adsense-click-fraud-monitoring | eq | * |