Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by developers to modify and add query strings to URLs within WordPress.
What This Means
If your website is built on the WordPress platform, you need to update your core WordPress files to the latest secure version or you're vulnerable. It's also very important to update all of your WordPress plugins and theme files to the latest secure versions.
For more information, please refer to this: https://blog.sucuri.net/2015/04/security-advisory-xss-vulnerability-affe...
We're always available to assist with these security updates. If you'd like a hand, please submit a support ticket at https://silverbarrel.com/helpdesk.