WordPress InfiniteWP Client Admin Authentication Bypass

I was browsing wpvulndb.com when I stumbled upon the InfiniteWP Client authentication bypass. Being curios, I wanted to reverse engineer the unpublished PoC. Here’s my (short) journey. Analysis The first step was to browse through the source code which is… Read more


Migrating WordPress Blog to Jekyll

This year I migrated my blog from the famous WordPress blogging platform to Jekyll static site generator. The main reasons were the handling of code snippets, simplicity, and security. I think that WordPress is fine, but my own time with WordPress is cert... (more…)

Read more »