Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. infosec-handbook.eu (infosechandbook@mastodon.at)'s status on Friday, 26-Apr-2019 10:01:59 EDT infosec-handbook.eu infosec-handbook.eu

    "WooCommerce Checkout Manager" plugin for WooCommerce (WordPress), used by 60,000+ websites, vulnerable to arbitrary file uploads:

    https://thehackernews.com/2019/04/wordpress-woocommerce-security.html

    – the latest version of WooCommerce Checkout Manager (4.2.6) is still vulnerable to this
    – there is no patch available
    – mitigation: disable the "Categorize Uploaded Files" option in the setting, or disable the plugin completely

    #woocommerce #wordpress #vulnerability #0day #zeroday #infosec #cybersecurity #security

    In conversation Friday, 26-Apr-2019 10:01:59 EDT from mastodon.at permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.