CVE-2024-49266
CVE-2015-10132
WP SpreadPlugin <= 3.8.6 - XSS
WP SpreadPlugin < 3.8.6.2 - Cross-Site Scripting