all InfoSec news
“Never Assume Anything” – Unauthenticated Stored Cross-Site Scripting Vulnerability Exposed in 14 Email Logging Plugins
Wordfence www.wordfence.com
“Never Assume Anything” – that is the 4th Guiding Principle written in the Security section of the WordPress Common APIs Handbook for developers. When it comes to WordPress plugin security, assumptions can be dangerous. This became evident when the Wordfence Threat Intelligence team discovered an Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability in 14 different email ...
Read More
The post “Never Assume Anything” – Unauthenticated Stored Cross-Site Scripting Vulnerability Exposed in 14 Email Logging Plugins appeared first on Wordfence.
apis cross-site developers email exposed handbook intelligence logging plugin plugins scripting security team threat threat intelligence vulnerabilities vulnerability wordfence wordfence intelligence wordpress wordpress plugin wordpress plugin security wordpress security written