CVE-2011-4955
Multiple cross-site scripting (XSS) vulnerabilities in ui_stats.php in the bSuite plugin before 5 alpha 3 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) s or (2) p parameters to index.php.
Date published : 2017-12-20
http://wordpress.org/support/topic/plugin-bsuite-xss-security-vulnerability-in-407