The Pinfinity theme before 2.0 for WordPress has XSS via the s parameter.Referenceshttps://wpvulndb.com/vulnerabilities/8900
