-
```
What steps will reproduce the problem?
1. Use the default timthumb.php with default $allowedSites settings.
2. Load remote file http://blogger.com.example.com/attack.php file so it gets
stored in…
-
```
What steps will reproduce the problem?
1. Use the default timthumb.php with default $allowedSites settings.
2. Load remote file http://blogger.com.example.com/attack.php file so it gets
stored in…
-
```
What steps will reproduce the problem?
1. Use the default timthumb.php with default $allowedSites settings.
2. Load remote file http://blogger.com.example.com/attack.php file so it gets
stored in…
-
First thing: currently there is a mechanism, that allows for composer.json usage in plugins. October, after it has found composer.json in plugin root folder, proceeds with installation of required lib…
-
```
What steps will reproduce the problem?
1. Use the default timthumb.php with default $allowedSites settings.
2. Load remote file http://blogger.com.example.com/attack.php file so it gets
stored in…
-
```
What steps will reproduce the problem?
1. Use the default timthumb.php with default $allowedSites settings.
2. Load remote file http://blogger.com.example.com/attack.php file so it gets
stored in…
-
https://wpvulndb.com/vulnerabilities/6838
Has someone validated this issue before.
My concern here is that changelog doesn't mention this version at all. and looks like this version is not released …
-
Hi Ekino,
Thanks for putting this bundle together - it's blowing my mind as I use it.
If you perform the installation as described in the installation document - you get a pretty awesome mix of word…
-
There is now following issue in plugin_vulns.xml:
```
SendIt <= 1.5.9 - Blind SQL Injection Vulnerability
17716
SQLI
```
If I'm correct http://os…
fgeek updated
10 years ago
-
An API that our ACP will query to allow for installation of themes and plugins directly in the ACP itself.
Currently, I have an idea where anybody with a GitHub account can visit for example `package…