Alex PeñainTenable TechBlogHunting for SQL injections (SQLis) and Cross-Site Request Forgeries (CSRFs) in WordPress PluginsThis is a detailed overview of the bugs found while reviewing the source code of WordPress plugins. I cover 3 reported vulnerabilities…Aug 12, 20201Aug 12, 20201
Alex PeñainTenable TechBlogExploiting Jira for Host DiscoveryLast October I dived into the world of Jira Software (version 8.4.1) in the hope of discovering new vulnerabilities. Initially, I came…Feb 20, 2020Feb 20, 2020