WordPress’ popular plugin File Manager (versions 6.0-6.8) contains a vulnerability that allows an attacker to upload files and execute commands. Indicators of compromise include filenames such as “hardfork.php”, “hardfind.php” and “x.php”. The root of this problem is connector.minimal.php, which is due to a recent name change and executes directly — allowing the upload of malicious […]
- Risk Management
- Security Testing
- Red Team Testing
- Application Security Testing
- Blockchain Security Testing
- Web Application Penetration Testing
- Physical Penetration Testing
- Network Penetration Testing
- Social Engineering Testing
- Security Vulnerability Assessment
- Mobile Application Security Testing
- IoT Penetration Testing
- Cloud Penetration Testing
- GRC