The WP Mailster plugin prior to 1.5.5 for WordPress has XSS in the unsubscribe handler via the mes parameter to view/subscription/unsubscribe2.php.
wpmailster wp mailster