Security rants
- Rediscovering old vulns: /KILLing randoms on MSN IRC.
- Tracfwned - hacking discount minutes on a budget US cellular provider
- daloRADIUS 0.9-9 - Multiple vulnerabilities leading to arbitrary shell execution
WordPress-related
- Why you shouldn’t run WP-CLI as root
- Duplicator WordPress Plugin <= 1.3.2 - Arbitrary file read
- blog-designer-pro - blind SQL injection leading to PHP Object Injection
- indeed-membership-pro <=7.5 arbitrary image upload
- ARForms 3.6 arbitrary file upload
- Fancy Product Designer - REST API - Authentication override/privilege escalation