Compfight Project » Compfight : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in compfight-search.php in the Compfight plugin 1.4 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the search-value parameter.
Max CVSS
3.5
EPSS Score
0.09%
Published
2014-11-05
Updated
2014-11-06
Cross-site scripting (XSS) vulnerability in compfight-search.php in the Compfight plugin 1.4 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the search-value parameter.
Max CVSS
3.5
EPSS Score
0.09%
Published
2014-08-12
Updated
2014-08-13
2 vulnerabilities found