Published: 28/08/2018 Updated: 30/10/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 384

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the Wordfence Security plugin prior to 5.1.5 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the val parameter to whois.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wordfence wordfence security

Node Js CVE Automated Scrapper

CVE Scrapper v100 CVE Scrapper is a tool used to request vulnerability from the official CVE Website WHY ?! Because i wanted to build something easy to use from the command line to rapidly get vulnerability of a specifc technologie Plus, this process can be run automaticly using cron, so you can have a "daily" or "weekly" updates about the vulnerabilitie

Node Js CVE Automated Scrapper

CVE Scrapper v100 CVE Scrapper is a tool used to request vulnerability from the official CVE Website WHY ?! Because i wanted to build something easy to use from the command line to rapidly get vulnerability of a specifc technologie Plus, this process can be run automaticly using cron, so you can have a "daily" or "weekly" updates about the vulnerabilitie

CWE-79 https://www.wordfence.com/help/advanced/changelog/http://techdefencelabs.com/security-advisories.html https://nvd.nist.gov https://github.com/Eli0ttD0NATIEN/cve-parser

CVE-2014-4932

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect