WordPress is a set of blogging platforms developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions prior to WordPress Complianz plugin 6.0.0, which stems from the plugin’s failure to filter and escape the s parameter before outputting it to the properties of the admin page, which can be exploited by attackers to cause reflected cross-site scripting.