Plugin Vulnerabilities Firewall
@pvfirewall.bsky.social
The only WordPress firewall plugin backed with testing that shows that it delivers protection that other WordPress security plugins should, but fail to, provide https://www.pluginvulnerabilities.com/plugin-vulnerabilities-firewall/
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Send email only on Reply to My Comment before it was even disclosed. wpscan.com/vulnerabilit...
August 13, 2024 at 5:54 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Send email only on Reply to My Comment before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Shield Security before it was even disclosed. research.cleantalk.org/cve-2024-7313/
August 12, 2024 at 5:58 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Shield Security before it was even disclosed. research.cleantalk.org/cve-2024-7313/
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Stock Ticker before it was even disclosed. www.pluginvulnerabilities.com/2024/08/06/r...
Reflected Cross-Site Scripting (XSS) Vulnerability in Stock Ticker
We recently had an attacker try to exploit a vulnerability on our website, which was blocked by our Plugin Vulnerabilities Firewall. The logging for that was as follows:Like another reflected
www.pluginvulnerabilities.com
August 9, 2024 at 6:11 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Stock Ticker before it was even disclosed. www.pluginvulnerabilities.com/2024/08/06/r...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this cross-site request forgery (CSRF)/cross-site scripting (XSS) vulnerability in the WordPress plugin UnGallery before it was even disclosed. wpscan.com/vulnerabilit...
August 8, 2024 at 5:30 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this cross-site request forgery (CSRF)/cross-site scripting (XSS) vulnerability in the WordPress plugin UnGallery before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Stock Ticker before it was even disclosed. www.pluginvulnerabilities.com/2024/08/05/r...
Reflected Cross-Site Scripting (XSS) Vulnerability in Stock Ticker
We recently had an attacker try to exploit a vulnerability on our website, which was blocked by our Plugin Vulnerabilities Firewall. The logging for that was as follows:We traced that back to
www.pluginvulnerabilities.com
August 7, 2024 at 4:31 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Stock Ticker before it was even disclosed. www.pluginvulnerabilities.com/2024/08/05/r...
✅ Testing confirms that the upcoming SQL injection protection for our Plugin Vulnerabilities Firewall protects against this SQL injection vulnerability in the WordPress plugin Web Directory Free. wpscan.com/vulnerabilit...
August 6, 2024 at 5:17 PM
✅ Testing confirms that the upcoming SQL injection protection for our Plugin Vulnerabilities Firewall protects against this SQL injection vulnerability in the WordPress plugin Web Directory Free. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Web Directory Free before it was even disclosed. wpscan.com/vulnerabilit...
August 5, 2024 at 5:53 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Web Directory Free before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Simple Video Directory before it was even disclosed. wpscan.com/vulnerabilit...
August 2, 2024 at 6:07 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Simple Video Directory before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Essential Blocks before it was even disclosed. wpscan.com/vulnerabilit...
August 1, 2024 at 9:20 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Essential Blocks before it was even disclosed. wpscan.com/vulnerabilit...
❌ Testing shows that the zero-day protection in our Plugin Vulnerabilities Firewall failed to protect against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Website Content in Page or Post. 1/2 wpscan.com/vulnerabilit...
July 31, 2024 at 8:09 PM
❌ Testing shows that the zero-day protection in our Plugin Vulnerabilities Firewall failed to protect against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Website Content in Page or Post. 1/2 wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Inline Related Posts before it was even disclosed. wpscan.com/vulnerabilit...
July 30, 2024 at 5:10 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Inline Related Posts before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this cross-site request forgery (CSRF)/cross-site scripting (XSS) vulnerability in the WordPress plugin Similarity before it was even disclosed. wpscan.com/vulnerabilit...
July 29, 2024 at 4:33 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this cross-site request forgery (CSRF)/cross-site scripting (XSS) vulnerability in the WordPress plugin Similarity before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticate persistent cross-site scripting (XSS) vulnerability in the WordPress plugin WordPress Jitsi Shortcode before it was even disclosed. wpscan.com/vulnerabilit...
July 26, 2024 at 9:58 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticate persistent cross-site scripting (XSS) vulnerability in the WordPress plugin WordPress Jitsi Shortcode before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent XSS vulnerability in the WordPress plugin Paypal Pay, Buy, Donation and Cart Buttons Shortcode before it was even disclosed. wpscan.com/vulnerabilit...
July 25, 2024 at 4:40 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent XSS vulnerability in the WordPress plugin Paypal Pay, Buy, Donation and Cart Buttons Shortcode before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) via SVG vulnerability in the WordPress plugin WebP & SVG Support before it was even disclosed. wpscan.com/vulnerabilit...
July 24, 2024 at 5:19 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) via SVG vulnerability in the WordPress plugin WebP & SVG Support before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Ultimate Classified Listings before it was even disclosed. wpscan.com/vulnerabilit...
July 23, 2024 at 3:44 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Ultimate Classified Listings before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Spotify Play Button before it was even disclosed. wpscan.com/vulnerabilit...
July 22, 2024 at 5:30 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Spotify Play Button before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Widget4Call before it was even disclosed. wpscan.com/vulnerabilit...
July 19, 2024 at 7:10 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Widget4Call before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scriptting (XSS) vulnerability in the WordPress plugin Animated AL List before it was even disclosed. wpscan.com/vulnerabilit...
July 18, 2024 at 5:41 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scriptting (XSS) vulnerability in the WordPress plugin Animated AL List before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Simple AL Slider before it was even disclosed. wpscan.com/vulnerabilit...
July 17, 2024 at 7:29 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Simple AL Slider before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Bible Text before it was even disclosed. wpscan.com/vulnerabilit...
July 16, 2024 at 5:46 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin Bible Text before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Pagerank Tools before it was even disclosed. wpscan.com/vulnerabilit...
July 15, 2024 at 5:52 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin Pagerank Tools before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this cross-site request forgery (CSRF)/cross-site scripting (XSS) vulnerability in the WordPress plugin SULly before it was even disclosed. wpscan.com/vulnerabilit...
July 12, 2024 at 3:50 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this cross-site request forgery (CSRF)/cross-site scripting (XSS) vulnerability in the WordPress plugin SULly before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin SULly before it was even disclosed. wpscan.com/vulnerabilit...
July 11, 2024 at 6:43 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this reflected cross-site scripting (XSS) vulnerability in the WordPress plugin SULly before it was even disclosed. wpscan.com/vulnerabilit...
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin OpenPGP for Textareas before it was even disclosed. wpscan.com/vulnerabilit...
July 10, 2024 at 8:02 PM
✅ Testing confirms that the zero-day protection in our Plugin Vulnerabilities Firewall protected against this authenticated persistent cross-site scripting (XSS) vulnerability in the WordPress plugin OpenPGP for Textareas before it was even disclosed. wpscan.com/vulnerabilit...