You are here: Home ยป Cross Site Scripting

Cross Site Scripting

WordPress advisory: Akal premium theme XSS vulnerability

Over the course of one week I had the opportunity to audit two hacked WordPress websites. I could quickly discover two vulnerabilities: a Cross Site Scripting, or XSS, in a premium WordPress theme Akal, and a Denial-of-Service in an undisclosed newsletter plugin. This post describes the Akal premium WordPress theme XSS vulnerability. 2,504 views Did this …

WordPress advisory: Akal premium theme XSS vulnerability Read More »

13 queries, took 2.047 seconds running PHP version 7.4.8