Exposure of Private Personal Information to an Unauthorized Actors
CVE-2022-0482
Lack of authentication logic in the backend API was leading to sensitive PII data exposed to unauthenticated attackers.
Hacking code to make the internet a safer place.
Over the last few years, I discovered more than 70 new vulnerabilities, half of which are in open-source software.
Easy!Appointments
API Privilege Escalation
CVE-2022-1397
Privilege escalation occurs when a user gets access to more resources or functionality than they are normally allowed. On Easy!Appointments API authorization is checked against the user's existence, without validating the permissions. As a result, a low privileged user can take over the system.
WordPress
Advanced Custom Fields <= 6.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Field
CVE-2023-6701
The Advanced Custom Fields (ACF) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a custom text field in all versions up to, and including, 6.2.4 due to insufficient input sanitization and output escaping.
Stripe Payment Plugin for WooCommerce <= 3.7.9 - Unauthenticated SQL Injection
CVE-2024-0705
The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 3.7.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
Simple Job Board <= 2.11.0 - Unauthenticated PHP Object Injection via Job Application Fields
CVE-2024-1813
The Simple Job Board plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.11.0 via deserialization of untrusted input in the job_board_applicant_list_columns_value function.