Vulnerabilities protected by our XSS: Cross Site Scripting firewall rule

23,034,136
Attacks Blocked in Past 24 Hours

Showing 6181-6200 of 6,652 Vulnerabilities

ZdStatistics <= 2.0.1 - Cross-Site Scripting
6.1
CVE-2014-4605
May 28, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Bugs Go Viral : Facebook Promotion Generator <= 1.3.4 - Cross-Site Scripting
6.1
CVE-2014-4528
May 28, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP Easy Post Types < 1.4.4 - Cross-Site Scripting
6.1
CVE-2014-4524
May 28, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WordPress Social Invitations – Lite <= 1.4.4.2 - Reflected Cross-Site Scripting
6.1
CVE-2014-4597
May 28, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
DMCA WaterMarker < 1.1 - Cross-Site Scripting
6.1
CVE-2014-4520
May 28, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Votecount For Balatarin <= 0.1.1 - Reflected Cross-Site Scripting
6.1
CVE-2014-4572
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
HTML5 Lyrics Karaoke Player <= 2.4 - Cross-Site Scripting
6.1
CVE ID Unknown
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Infusionsoft Gravity Forms Add-on < 1.5.7 - Cross-Site Scripting
6.1
CVE-2014-4536
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Secure HTML5 Video Player < 3.4 - Reflected Cross-Site Scripting
6.1
CVE ID Unknown
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP-RSS-Spreadshirt-3DCube-Gallery <= 1.3 - Cross-Site Scripting
6.1
CVE-2014-4553
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Audio <= 0.6.1 - Reflected Cross-Site Scripting
6.1
CVE ID Unknown
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP e-Commerce Swipe plugin <= 3.1.0 - Multiple Cross-Site Scripting
6.1
CVE-2014-4559
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP-Planet <= 0.1 - Reflected Cross-Site Scripting
6.1
CVE-2014-4592
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Link2Player <= 0.2 - Cross-Site Scripting
6.1
CVE ID Unknown
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Kindeditor For WordPress < 1.4 - Reflected Cross-Site Scripting
6.1
CVE ID Unknown
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WooCommerce SagePay Direct Payment Gateway < 0.1.6.7 - Cross-Site Scripting
7.1
CVE-2014-4549
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
dsIDXpress < 2.1.1 - Cross-Site Scripting
6.1
CVE-2014-4521
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
eShop Swipe plugin <= 3.7.0 - Cross-Site Scripting
6.1
CVE-2014-4556
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Zeenshare <= 1.0.1 - Cross-Site Scripting
6.1
CVE-2014-4606
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Shortcode Ninja <= 1.4 - Cross-Site Scripting
6.4
CVE-2014-4550
May 25, 2014
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Title CVE ID CVSS Vector Date
ZdStatistics <= 2.0.1 - Cross-Site Scripting CVE-2014-4605 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 28, 2014
Bugs Go Viral : Facebook Promotion Generator <= 1.3.4 - Cross-Site Scripting CVE-2014-4528 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 28, 2014
WP Easy Post Types < 1.4.4 - Cross-Site Scripting CVE-2014-4524 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 28, 2014
WordPress Social Invitations – Lite <= 1.4.4.2 - Reflected Cross-Site Scripting CVE-2014-4597 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 28, 2014
DMCA WaterMarker < 1.1 - Cross-Site Scripting CVE-2014-4520 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 28, 2014
Votecount For Balatarin <= 0.1.1 - Reflected Cross-Site Scripting CVE-2014-4572 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
HTML5 Lyrics Karaoke Player <= 2.4 - Cross-Site Scripting 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
Infusionsoft Gravity Forms Add-on < 1.5.7 - Cross-Site Scripting CVE-2014-4536 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
Secure HTML5 Video Player < 3.4 - Reflected Cross-Site Scripting 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
WP-RSS-Spreadshirt-3DCube-Gallery <= 1.3 - Cross-Site Scripting CVE-2014-4553 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
Audio <= 0.6.1 - Reflected Cross-Site Scripting 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
WP e-Commerce Swipe plugin <= 3.1.0 - Multiple Cross-Site Scripting CVE-2014-4559 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
WP-Planet <= 0.1 - Reflected Cross-Site Scripting CVE-2014-4592 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
Link2Player <= 0.2 - Cross-Site Scripting 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
Kindeditor For WordPress < 1.4 - Reflected Cross-Site Scripting 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
WooCommerce SagePay Direct Payment Gateway < 0.1.6.7 - Cross-Site Scripting CVE-2014-4549 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L May 25, 2014
dsIDXpress < 2.1.1 - Cross-Site Scripting CVE-2014-4521 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
eShop Swipe plugin <= 3.7.0 - Cross-Site Scripting CVE-2014-4556 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
Zeenshare <= 1.0.1 - Cross-Site Scripting CVE-2014-4606 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 25, 2014
Shortcode Ninja <= 1.4 - Cross-Site Scripting CVE-2014-4550 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N May 25, 2014

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation