Subscribe
Trending News
By using our website, you agree to the use of our cookies.

Author: Bijay Pokharel

CYBER SECURITY

Critical Vulnerability Patched in Ninja Forms WordPress Plugin

The team uncovered a code injection vulnerability that made it possible for unauthenticated attackers to call a limited number of methods in various Ninja Forms classes, including a method that unserialized user-supplied content, resulting in Object Injection. This could allow attackers to execute arbitrary code or delete arbitrary files on sites where a separate POP chain was present.