WordPress plugin Photonic Gallery & Lightbox for Flickr, SmugMug & Others 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host a personal blog site on a PHP and MySQL based...

WordPress TK SmugMug Slideshow Shortcode Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)

Software TK SmugMug Slideshow Shortcode Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a44f02d512b6 Credits Rafie Muhammad...

WordPress TK SmugMug Slideshow Shortcode plugin <= 1.7 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress TK SmugMug Slideshow Shortcode plugin versions = 1.7. Solution No patched version available...

WordPress TK SmugMug Slideshow Shortcode plugin <= 1.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress TK SmugMug Slideshow Shortcode plugin versions = 1.7. Solution No patched version available...

UPDATE: OSRFramework 0.17.2

PenTestIT RSS Feed My last post about this open sources research framework was approximately three weeks ago. Recently, two new versions were released in quick succession - 0.17.1 & OSRFramework 0.17.2. This post covers the changes and advancements made to both these versions. What is OSRFramewor...

secure.smugmug.com Open Redirect vulnerability

Vulnerable URL: https://secure.smugmug.com/logout?s=91025=http://www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...