cleantalk
Vulnerabilities and Security Researches

Wordfence Security – Firewall, Malware Scan, and Login Security, CVE-2014-4932

CVE, Research URL

CVE-2014-4932

Home page URL

Security reports for Wordfence Security – Firewall, Malware Scan, and Login Security

Application

Wordfence Security – Firewall, Malware Scan, and Login Security

Published on
Aug 28, 2018
Research Description
Cross-site scripting (XSS) vulnerability in the Wordfence Security plugin before 5.1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the val parameter to whois.php.
Affected versions
max 5.1.5.
Status
vulnerable
Previous vulnerability researches
Wordfence Security – Firewall, Malware Scan, and Login Security (CVE-2014-4664) , Jun 07, 2024
Wordfence Security – Firewall, Malware Scan, and Login Security (CVE-2019-9669) , Jun 07, 2024
Wordfence Security – Firewall, Malware Scan, and Login Security (CVE-2014-4932) , Jun 07, 2024
Wordfence Security – Firewall, Malware Scan, and Login Security (CVE-2022-3144) , Jun 07, 2024
Wordfence Security – Firewall, Malware Scan, and Login Security , Feb 04, 2026
New vulnerability
Contact Form 7 Database Addon – CFDB7 , Feb 17, 2026
GoSMTP – SMTP for WordPress , Feb 17, 2026
User Role Editor , Feb 16, 2026
Post Types Order , Feb 11, 2026
Code Snippets , Feb 09, 2026