WordPress is a set of blogging platforms developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions of the WordPress Form Store to DB plugin prior to 1.1.1, which stems from the plugin’s failure to filter and escape parameter keys before outputting them to created entries, and can be exploited by unauthenticated attackers to perform Cross-site scripting attacks.