CVE-2022-3898 - How a CSRF Vulnerability in WP Affiliate Platform Could Let Attackers Delete Affiliate Records
WordPress is a powerhouse for website creation, and plugins like WP Affiliate Platform help users easily manage their affiliate marketing. But like all software, plugins
CVE-2022-3361 - How Directory Traversal in Ultimate Member WordPress Plugin Risks Your Site
The WordPress ecosystem relies heavily on plugins to add features and enhance functionality. But, with popularity comes risk — and Ultimate Member, one of the most-used
CVE-2022-3991 - Exploit Details and Analysis of the Photospace Gallery WordPress Plugin XSS Vulnerability
In October 2022, a critical security vulnerability was disclosed in the popular Photospace Gallery WordPress plugin. Known as CVE-2022-3991, this bug could allow attackers — even
CVE-2022-3995 - How TeraWallet’s Insecure Direct Object Reference Exposes WordPress User Wallets
If you’ve ever run an e-commerce WordPress site, you might have used TeraWallet – a popular wallet plugin. But did you know that versions up
CVE-2022-4035 - How iFrame Injection in Appointment Hour Booking Plugin Lets Attackers Hack Your WordPress Site
WordPress plugins are awesome for adding features to your website. But sometimes, even trusted plugins can have security holes that let hackers in. CVE-2022-4035 is
Episode
00:00:00
00:00:00