Welcome to ManageWP.org

Register to share, discuss and vote for the best WordPress stories every day, find new ideas and inspiration for your business and network with other members of the WordPress community. Join the #1 WordPress news community!

×

From CSRF to RCE and WordPress-site takeover: CVE-2020-8417 (Code Snippets plugin)

blog.wpsec.com | Feb. 5, 2020 | 5 min read

How a "simple" vulnerability like CSRF could end up with Remote Code Execution (RCE) in a WordPress installation. Step by step write up about the vulnerability CVE-2020-8417, code snippets plugin

7 votes   Flag