Sept. 19, 2023, 1:48 p.m. | Marco Wotschka


On August 18, 2023, the Wordfence Threat Intelligence team initiated the responsible disclosure process for two PHP Object Injection vulnerabilities in the Essential Blocks plugin for WordPress, a plugin with over 100,000 installations. We received a response three days later and sent over our full disclosure on August 23, 2023. A patched version of the ...
Read More

The post Two PHP Object Injection Vulnerabilities Fixed in Essential Blocks appeared first on Wordfence.

august disclosure injection intelligence object php plugin process response responsible responsible disclosure team threat threat intelligence vulnerabilities wordfence wordpress

More from / Wordfence

Business Information Security Officer

@ Metrolink | Los Angeles, CA

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City

Security Engineer

@ ChartMogul | Remote, EU

Senior Threat Engineer

@ Zscaler | Tel Aviv-Yafo, Israel

Information Security Communication Specialist

@ MicroStrategy | Mumbai, India

Principal Software Engineer (Network Security - SASE)

@ Palo Alto Networks | Santa Clara, CA, United States