The Filr plugin for WordPress, which is used to safely store documents, has a security issue that allows malicious code to be added to pages. This can only be done by someone with editor-level permissions or higher, and only affects certain types of WordPress installations.