EPSS
Percentile
48.4%
Reflected Cross-Site Scripting (XSS) vulnerability discovered by WordFence in WordPress KingComposer plugin (versions <= 2.9.4).
Update the WordPress KingComposer plugin to the latest available version (at least 2.9.5).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15299
wordpress.org/plugins/kingcomposer/#developers
www.wordfence.com/blog/2020/07/xss-flaw-impacting-100000-sites-patched-in-kingcomposer/