WordPress.org

Forums

Wordfence Security
Comments allow xss attacks (1 post)

  1. Chathuraka
    Member
    Posted 2 years ago #

    Hi there,

    I am using your security plugin in my site. But my comments section is still not secured from XSS attacks. I have activated your firewall in the plugin. But still I can add comments with javascript codes. If your firewall protect the site against XSS why this type of comments are still possible to add?

    In the plugins description you say
    " Continuously scans for malware and phishing URL's including all URL's on the Google Safe Browsing List in all your comments, posts and files that are security threats.
    I have activated all the settings in the options related to comments and firewall.

    Please assist me to figure out this point.

    Many Thanks,
    Chathuraka

    https://wordpress.org/plugins/wordfence/

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • Wordfence Security
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic