2 matches found
Malicious code in wp-env (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec2e092036cea9a9b2563e18b3d588ab046800c2160fb820081423b909066759 Package squats the wp-env CLI name commonly invoked as npx wp-env by users intending @wordpress/env. The package ships only bin/run.js declared main:...
WordPress Plugin AllWebMenus 1.1.3 - Remote File Inclusion
Exploit Title: Allwebmenus Wordpress Menu Plugin Wordpress plugin RFI Google Dork: inurl:wp-content/plugins/allwebmenus-wordpress-menu-plugin Date: 09/19/2011 Author: Ben Schmidt supernothing AT spareclockcycles.org @supernothing Software Link:...