Title: Constant XSS attacks Last modified: August 31, 2016 --- # Constant XSS attacks * [leeiah](https://wordpress.org/support/users/leeiah/) * (@leeiah) * [10 years, 2 months ago](https://wordpress.org/support/topic/constant-xss-attacks/) * Some creep has been trying to inject my site with XSS code for over a month now, and as you can see in the screenshot, amazing Wordfence keeps filtering the code out. However, there are some URLs he hits, like my ad widgets, wp-content-themes, and jetpack sharing icons that don’t say anything about any code being filtered out, so I’m worried he may be getting through. * My question is; is Wordfence completely protecting me from XSS injection, or there other steps I need to take? * [http://postimg.org/image/dnzbe6j1t/](http://postimg.org/image/dnzbe6j1t/) * [https://wordpress.org/plugins/wordfence/](https://wordpress.org/plugins/wordfence/) Viewing 1 replies (of 1 total) * [Peter La Fond](https://wordpress.org/support/users/myinternetscout/) * (@myinternetscout) * [9 years, 2 months ago](https://wordpress.org/support/topic/constant-xss-attacks/#post-8912814) * Did you resolve this issue? Viewing 1 replies (of 1 total) The topic ‘Constant XSS attacks’ is closed to new replies. * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865) * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/) * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq) * [Support Threads](https://wordpress.org/support/plugin/wordfence/) * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/) * 1 reply * 2 participants * Last reply from: [Peter La Fond](https://wordpress.org/support/users/myinternetscout/) * Last activity: [9 years, 2 months ago](https://wordpress.org/support/topic/constant-xss-attacks/#post-8912814) * Status: not resolved