CVE-2015-9440

The monetize plugin through 1.03 for WordPress has CSRF with resultant XSS via wp-admin/admin.php?page=monetize-zones-new. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt