WordPress Plugin Vulnerabilities

Wordfence 3.3.5 - XSS & IAA

Description

The Wordfence Security – Firewall & Malware Scan WordPress plugin was affected by a XSS & IAA security vulnerability.

Affects Plugins

Plugin icon
wordfence
Fixed in 3.3.7

References

URL
https://seclists.org/fulldisclosure/2012/Oct/139

Miscellaneous

Verified
No
WPVDB ID
ee00e949-7bad-4e50-92f0-5b860223044d

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2020-03-05
Title
RegistrationMagic – Custom Registration Forms and User Login < 4.6.0.4 - Multiple Critical Issues
Published
2016-07-06
Title
WP Maintenance Mode <= 2.0.6 - Authenticated Multisite Remote Code Execution
Published
2017-10-23
Title
Contact Form for WordPress – Ultimate Form Builder Lite <= 1.3.6 - SQL Injection
Published
2015-05-08
Title
Ad Buttons <= 2.3.1 - CSRF & XSS
Published
2017-06-10
Title
Responsive Menu < 3.1.4 - XSS and CSRF