↧
Backdoor found in The School Management Pro plugin for WordPress
Versions before 9.9.7 of the WordPress plugin “The School Management Pro” from Weblizar contain a backdoor allowing an unauthenticated attacker to execute arbitrary PHP code on sites with the plugin...
View Article
Image may be NSFW.
Clik here to view.
Clik here to view.
Capture the Flag at WordCamp Europe 2022
During WordCamp Europe 2022, we ran a WordPress Capture The Flag (CTF) competition across four challenges. We wanted to introduce folks to the addictive world of CTF, and let people experience how...
View ArticleVulnerabilities Found in the 3DPrint Premium Plugin
The premium version of the WordPress plugin 3DPrint is vulnerable to Cross Site Request Forgery (CSRF) and directory traversal attacks when the file manager functionality is enabled. These...
View Article