The article discusses the discovery of an Arbitrary File Upload vulnerability in the Avada WordPress theme during a Bug Bounty Extravaganza event. The vulnerability, which affects versions up to and including 7.11.4 of the theme, allows authenticated attackers with...
The article discusses a recent submission of an unauthenticated SQL Injection vulnerability in the Ultimate Member WordPress plugin. The vulnerability allows attackers to extract sensitive data from the database, such as password hashes. The discovery was made by...
The article discusses a Privilege Escalation vulnerability found in the Academy LMS WordPress plugin, affecting versions up to 1.9.19, which allows authenticated attackers to elevate their privileges to that of a site administrator. The vulnerability allows users to...
The article announces a Bug Bounty Extravaganza, offering increased bounty rates for vulnerabilities submitted through February 29, 2024, when Wordfence handles responsible disclosure. During the Bug Bounty Extravaganza, a SQL Injection vulnerability was discovered in...
The article provides information about the use of cookies on a website and gives an overview of the different categories of cookies that are used. The site’s Privacy Policy is referenced for additional details on how cookies are utilized. The cookies used by the...
The article discusses the use of cookies on a website and provides an overview of the different categories of cookies used. The first category mentioned is “Strictly Necessary” cookies, which are essential for the proper functioning of the website and its...
