Cross-site scripting (XSS) vulnerability in the Wordfence Security plugin before 5.1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the val parameter to whois.php.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-08-28T17:00:00

Updated: 2024-08-06T11:34:36.609Z

Reserved: 2014-07-11T00:00:00

Link: CVE-2014-4932

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-08-28T17:29:00.627

Modified: 2024-11-21T02:11:07.907

Link: CVE-2014-4932

cve-icon Redhat

No data.