Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-08-28	CVE-2015-9370	Cross-site Scripting vulnerability in Ithemes Invoices Invoices Add-on for iThemes Exchange before 1.4.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). network ithemes CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.