CVE-2017-9288

The Raygun4WP plugin 1.8.0 for WordPress is vulnerable to a reflected XSS in sendtesterror.php (backurl parameter).

References

https://github.com/MindscapeHQ/raygun4wordpress/issues/16

https://wpvulndb.com/vulnerabilities/8836

https://github.com/MindscapeHQ/raygun4wordpress/pull/17

http://jgj212.blogspot.kr/2017/05/a-reflected-xss-vulnerability-in.html