BeyondTrust (former Bomgar) is a security firm, offering access management solutions to a large number of companies, “including half of the Fortune 100”. Their products range from password management to…
Category: Blog
Hacking WordPress Plugins Part 2 - Open Redirect [CVE-2021-24288]
AcyMailing is a newsletter subscription WordPress plugin with more than 30.000 total downloads and more than 5.000 active installations. The plugin versions prior to 7.5.0 are vulnerable to an open…
Hacking WordPress Plugins - Authenticated Shell Upload [CVE-2021-24347]
SP Project & Document Manager is a WordPress plugin developed by Smarty Pants, with over 301.000 downloads and over 7.000 installations, according to their website. It is a file management…
PCI DSS v3.2.1 - Our Take
Since the inception of the Data Security Standard, the goal has been a simple one: Increase the security across stakeholders who process card data, be it the acquirers, the merchants,…