A Cross-site Scripting (XSS) vulnerability exists in the All in One SEO Pack plugin prior to 2.0.3.1 for WordPress via the Search parameter.
semperplugins all in one seo pack