AppCalcium

WordPress Security: XSS – Session Hijacking

In Practical Scenarios for XSS Attacks, we know XSS can lead to multiple attack scenarios, today, we will look into detail on how AppCalcium for WordPress Security works. We will use one real-world WordPress Plugin vulnerability (https://cxsecurity.com/ascii/WLB-2019090152) to study how AppCalcium for WordPress Security works proactively. Here are steps on how vulnerability can be leveraged. …

WordPress Security: XSS – Session Hijacking Read More »

How to evade Web Application Firewall to attack vulnerable WordPress website(CVE: 2019-16119) – SQL Injection

A web application firewall (WAF) is an application firewall for HTTP applications. It applies a set of rules to an HTTP conversation. Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection. A SQL injection attack consists of insertion or “injection” of a SQL query via the input data from the …

How to evade Web Application Firewall to attack vulnerable WordPress website(CVE: 2019-16119) – SQL Injection Read More »