Author: Harald Eilertsen

  • Vulnerabilities Discovered in the 3DPrint Premium Plugin

    The premium version of the WordPress plugin 3DPrint is vulnerable to Cross Site Request Forgery (CSRF) and directory traversal attacks when the file manager functionality is enabled. We are also sharing information on this vulnerability over on the Jetpack blog. These vulnerabilities allow an attacker to delete or get access to arbitrary files and directories… More

Blog at