Profiles

  • Member Since: February 3rd, 2023
  • Find me on:
  • Posted a reply to WordPress уязвим?, on the site Форумы поддержки:
    @kotden, Это если распаковал то сразу надо ставить? Именно так. Иначе есть 99.99% шанс, что…

  • Posted a reply to WordPress уязвим?, on the site Форумы поддержки:
    @kotden, привет. Чистый движок, даже не установленный с язвами. и как можно установить не имея…

  • Posted a reply to Will writing simple theme mean less secure?, on the site WordPress.org Forums:
    Heya ketanco, Assume I learned to write wordpress theme and wrote a simple theme that…

  • Posted a reply to Security Vulnerability reported, on the site WordPress.org Forums:
    @shra, good job! :)

  • Posted a reply to Security Vulnerability reported, on the site WordPress.org Forums:
    @shra, here we go: POST /wp-admin/users.php?page=inactive-user-deleter%2Finactive-user-deleter.php HTTP/2 Host: [redacted] Cookie: [cookies] User-Agent: Mozilla/5.0 Content-Type: application/x-www-form-urlencoded…

  • Posted a reply to Security Vulnerability reported, on the site WordPress.org Forums:
    @shra, still exploitable: Tips: sanitize input, escape output and don't try to use HTML tag…

  • Posted a reply to Security Vulnerability reported, on the site WordPress.org Forums:
    @shra, nice one! But you forgot about the Persistent XSS in the confirmPeriod parameter.

  • Posted a reply to [Slide Anything - Responsive Content / HTML Slider and Carousel] Plugin is shown as a risk, on the site WordPress.org Forums:
    Hello everyone once again. I did an additional check (2023-05-31), but the vulnerability is already…

  • Posted a reply to Security Vulnerability reported, on the site WordPress.org Forums:
    @shra, This case isn't only about the multiple CSRF issues, but about the Persistent XSS…

  • Posted a reply to Making me lose business. Whatever security issue was detected removed my pics, on the site WordPress.org Forums:
    @eesh73 I'm sorry to hear that you faced such a problem. But as Otto said,…

  • Posted a reply to Issue in version 3.1, on the site WordPress.org Forums:
    @gkouvousisg, If you have more details about your mentioned issue, feel free to share them…

  • Posted a reply to [Twenty Fourteen] How do a create site like sample?, on the site WordPress.org Forums:
    @backyarder1, well, almost half of the named plugins have publicly known vulnerabilities. Of course, it…

  • Posted a reply to [Twenty Fourteen] How do a create site like sample?, on the site WordPress.org Forums:
    @backyarder1, I'm sorry to hear that you're having such a problem. If your hosting provider…

  • Posted a reply to How do a create site like sample?, on the site WordPress.org Forums:
    @backyarder1, I agree with Kathryn, hope you don’t give up on blogging :) From my…

  • Posted a reply to [Side Cart Woocommerce (Ajax)] Cross-Site Request Forgery?, on the site WordPress.org Forums:
    @ljezard, there is already such a topic on the plugin support forum, check it if…

  • Posted a reply to How do a create site like sample?, on the site WordPress.org Forums:
    @backyarder1, you can build such a website by using any basic theme + a few…

  • Posted a reply to How do a create site like sample?, on the site WordPress.org Forums:
    @backyarder1, This part: got hacked and this one: they don’t want me to use the…

  • Posted a reply to [Side Cart Woocommerce (Ajax)] security vulnerability, on the site WordPress.org Forums:
    @orfevre13, CSRF vulnerability cannot be critical in the first place. The original source - Patchstack…

  • Posted a reply to WordFence Flagged Critical Security Issue – Removed from WordPress, on the site WordPress.org Forums:
    @jb510, good point, sounds legit.

  • Posted a reply to [ImageMagick Engine] WordPress ImageMagick Engine Plugin <= 1.7.6 is vulnerable to RCE, on the site WordPress.org Forums:
    @wplobtar, this one is an Admin+ vulnerability, probably that's why the author ignored it.