20 Oct

Authenticated Persistent Cross-Site (XSS) Vulnerability in InPost Gallery

One of the ways we keep track of vulnerabilities in WordPress plugins to provide our customers with the best data is by monitoring our websites for apparent activity by hackers. We recently had a request for a file from the plugin InPost Gallery,¬†/wp-content/plugins/inpost-gallery/js/front.js. We don’t have that plugin installed on the website, so the request [Read more]

20 Oct

Local File Inclusion (LFI) Vulnerability in InPost Gallery

One of the ways we keep track of vulnerabilities in WordPress plugins to provide our customers with the best data is by monitoring our websites for apparent activity by hackers. We recently had a request for a file from the plugin InPost Gallery,¬†/wp-content/plugins/inpost-gallery/js/front.js. We don’t have that plugin installed on the website, so the request [Read more]