06 Oct

Vulnerability Details: Reflected Cross-Site Scriting (XSS) Vulnerability in Crelly Slider

From time to time a vulnerability is fixed in a plugin without the discoverer putting out a report on the vulnerability and we will put out a post detailing the vulnerability so that we can provide our customers with more complete information on the vulnerability. Last Friday we noted that the security scanner service Detectify seemed […]

06 Oct

Vulnerability Details: Cross-Site Request Forgery (CSRF)/SQL Injection Vulnerability in Crelly Slider

From time to time a vulnerability is fixed in a plugin without the discoverer putting out a report on the vulnerability and we will put out a post detailing the vulnerability so that we can provide our customers with more complete information on the vulnerability. While looking into a report of a reflected cross-site scripting […]