Wordfence Security
Comments allow xss attacks (1 post)

  1. Chathuraka
    Posted 2 years ago #

    Hi there,

    I am using your security plugin in my site. But my comments section is still not secured from XSS attacks. I have activated your firewall in the plugin. But still I can add comments with javascript codes. If your firewall protect the site against XSS why this type of comments are still possible to add?

    In the plugins description you say
    " Continuously scans for malware and phishing URL's including all URL's on the Google Safe Browsing List in all your comments, posts and files that are security threats.
    I have activated all the settings in the options related to comments and firewall.

    Please assist me to figure out this point.

    Many Thanks,


Topic Closed

This topic has been closed to new replies.

About this Plugin

  • Wordfence Security
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic