CVE-2015-9317

The awesome-support plugin before 3.1.7 for WordPress has XSS via custom information messages.