Vulnerabilities > Compfight Project

DATE CVE VULNERABILITY TITLE RISK
2014-11-05 CVE-2014-8622 Cross-Site Scripting vulnerability in Compfight Project Compfight 1.4
Cross-site scripting (XSS) vulnerability in compfight-search.php in the Compfight plugin 1.4 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the search-value parameter.
3.5
2014-08-12 CVE-2014-5202 Cross-Site Scripting vulnerability in Compfight Project Compfight 1.4
Cross-site scripting (XSS) vulnerability in compfight-search.php in the Compfight plugin 1.4 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the search-value parameter.
3.5