WordPress InfiniteWP Client Admin Authentication Bypass

I was browsing wpvulndb.com when I stumbled upon the InfiniteWP Client authentication bypass. Being curios, I wanted to reverse engineer the unpublished PoC. Here’s my (short) journey. Analysis The first step was to browse through the source code which is… Read more

Similar

WordPress 4.7 Release

On December 6, 2016, WordPress Version 4.7, named for jazz vocalist Sarah "Sassy" Vaughan, was released to the public. For more information on this enhancement and bug-fix release, read the WordPress Blog, and see the Changelog for 4.7.

Read more »

WordPress 4.7 Released

WordPress 4.7, “Vaughan”, has been released with the all new WordPress REST API Content Endpoints, a new default theme, many customizer features, and more.

Read more »