The WebinarIgnition plugin for WordPress has a security issue that can let attackers inject malicious web scripts into pages. This affects versions of the plugin up to and including 2.14.2 and can allow attackers with administrator-level access to inject code that will be run when any user visits the page.