Analysis of WordPress SQL Injection and Privilege Escalation Vulnerability
By: Junli Shen, Network Offensive and Defensive Researcher, NSFOCUS Analysis of Core WordPress SQL Injection Vulnerability As a Threat Response Center (TRC) researcher, I conducted a thorough analysis on the “Core WordPress SQL Injection Vulnerability” (CVE-2015-5623 and CVE-2015-2213). Vulnerability Overview Previously, I read a tweet about the SQL injection vulnerability found in the core function of […]