The WordPress Firewall 2 plugin for WordPress is vulnerable to a security issue called “Stored Cross-Site Scripting”. This means that in versions up to and including 1.3, there are not enough safeguards in place to protect users from malicious attacks. Attackers can use this vulnerability to insert malicious scripts into pages that will run when a user visits them.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
