13 Jul

WordPress Plugin Security Review: Stagehand Events

We were recently hired to do a security review of the WordPress plugin Stagehand Events. The review was done on version 1.0.5 of Stagehand Events. We checked for the following issues during this review: Insecure file upload handling (this is the cause of the most exploited type of vulnerability, arbitrary file upload) Deserialization of untrusted [Read more]