CVE-2022-45015 - Exploiting XSS in WBCE CMS v1.5.4 Search Settings (Results Footer Field)
In late 2022, a critical client-side security flaw was identified in WBCE CMS version 1.5.4. The vulnerability, cataloged as CVE-2022-45015, allows a remote
CVE-2022-0421 - How a WordPress Restaurant Plugin Let Anyone Tamper with Your Bookings and Attack Your Admin
WordPress powers millions of websites, from small blogs to bustling businesses. But sometimes, things slip through the cracks. Today, we’re taking a deep dive
CVE-2022-3690: Vulnerability in Popup Maker WordPress Plugin Before Version 1.16.11 - Stored Cross-Site Scripting by Contributors and Its Exploitation
The latest vulnerability to hit the headlines is CVE-2022-3690, affecting the widely used Popup Maker WordPress plugin. This weakness allows users with roles as low
CVE-2022-3753 - How Evaluate WordPress Plugin’s Setting Bugs Open the Door to Stored XSS (Even When _unfiltered_html_ Is Disabled!)
---
Introduction: What’s the Problem?
In September 2022, a new vulnerability was reported for the Evaluate WordPress plugin (up to version 1.). This bug
CVE-2022-3618 - How The Spacer WordPress Plugin Opened Doors for Hidden XSS Attacks
When it comes to the security of a WordPress website, plugins often become the weak link. One such plugin, Spacer, designed to help you add
Episode
00:00:00
00:00:00