WordPress XSS Bug Allows Drive-By Code Execution

The “stored XSS” designation associated with this vulnerability is also troublesome as it is the “most dangerous” type of XSS, according to OWASP.