Wordfence Intelligence

Title	CVE ID	CVSS	Vector	Date
Black-Letterhead <= 1.5 - Cross-Site Scripting	CVE-2011-3865	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 30, 2011
Elegant Grunge <= 1.0.3 - Cross-Site Scripting	CVE-2011-3856	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 29, 2011
Pixiv Custom < 2.1.6 - Cross-Site Scripting	CVE-2011-3858	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 29, 2011
The Erudite <= 2.7.8 - Cross-Site Scripting	CVE-2011-3864	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 28, 2011
Antisnews <= 1.09 - Cross-Site Scripting	CVE-2011-3857	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
News <= 0.1 - Cross-Site Scripting	CVE-2011-3851	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
Web Minimalist 200901 <= 1.1 - Cross-Site Scripting	CVE-2011-3861	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
Trending < 0.2 - Cross-Site Scripting	CVE-2011-3859	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
F8 Lite <= 4.2.1 - Cross-Site Scripting	CVE-2011-3855	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
ZenLite <= 4.3 - Cross-Site Scripting	CVE-2011-3854	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
Evolve < 1.2.7 - Cross-Site Scripting	CVE-2011-3852	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
RedLine < 1.66 - Reflected Cross-Site Scripting	CVE-2011-3863	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 27, 2011
Hybrid < 0.10 - Cross-Site Scripting	CVE-2011-3853	7.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L	September 27, 2011
WP-RecentComments <= 2.0.6 - Cross-Site Scripting	CVE-2012-1068	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	September 22, 2011
FV Flowplayer Video Player <= 1.2.11 - Cross-Site Scripting	CVE-2011-4568	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	July 22, 2011
eShop < 6.2.9 - Reflected Cross-Site Scripting		6.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N	July 20, 2011
Sermon Browser < 0.43.6 - Cross-Site Scripting		6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	April 26, 2011
SocialGrid <= 2.4 - Cross-Site Scripting		6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	April 19, 2011
WordPress Core <= 3.1 - Cross-Site Scripting	CVE-2011-4956	6.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N	April 5, 2011
SodaHead Polls < 2.0.4 - Multiple Cross-Site Scripting	CVE-2011-5304	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	March 17, 2011

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

Vulnerabilities protected by our XSS: Cross Site Scripting firewall rule

Showing 6081-6100 of 6,180 Vulnerabilities