Automatically pwn the top 1000 WordPress plugins for fun, profit and school

This article is the first part of many on a Taint Analysis Tool I wrote for the PHP Programming Language. This part talks about how I make use of the tool to automatically look for vulnerabilities in the top 1000 WordPress Plugin!

Read full article

Similar

From WordPress to Hexo

This article was originally published on Toptal Blog. Static site generators are systems that compile templates into static HTML pages. If that sounds efficient—yes, it is. There is no server processi... (more…)

How I Moved My Blog from WordPress to Cosmic JS

Originally written by Tony Spiro for TonySpiro.com. In this post I will tell you how I migrated my blog content from WordPress to its new…...

Review of Poopy.life – Free Unlimited On-Demand WordPress Temporary Sites

One of the frustrations and time-consuming things most WordPress developers and engineers do is setting up sandboxes to test various plugins, features and themes. This new service, which is currently… (more…)

Backdoor in Captcha Plugin Affects 300K WordPress Sites

The WordPress repository recently removed the plugin Captcha over what initially appeared to be a trademark issue with the current author using “WordPress” [Editors note: the original page has been removed, we’re now linking to a screen shot.] in their br... (more…)

WordPress Now on HackerOne

WordPress has grown a lot over the last thirteen years – it now powers more than 28% of the top ten million sites on the web. During this growth, each team has worked hard to continually improve th… (more…)

Latest News

Google’s New AI: Dog Goes In, Statue Comes Out [video]

AI Conceptual Art

Sci-fi film is being released on Twitter – and it’s made using AI