Wordfence Wordfence Security — known CVE vulnerabilities
Every CVE whose affected-product data names Wordfence Wordfence Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2014-4932 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in the Wordfence Security plugin before 5.1.5 for WordPress allows remote attackers to inject…
CVE-2022-3144 — CVSS 4.4 (medium): The Wordfence Security – Firewall & Malware Scan plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and…