Skip to content

Jitendra Patro

The more you learn, the more you realize how little you know.

Menu
  • Home
  • Blog
  • Status
  • Projects
  • Writeups
    • CVEs and Not CVEs
      • CVE writeups
      • Not CVE writeups
    • Secure Code Warrior
      • PHP Basic

Tag: SMIL

Posted onJuly 30, 2022January 3, 2023CVE writeups

CVE-2022-33994:- Stored XSS in WordPress

by PhoenixLeave a comment on CVE-2022-33994:- Stored XSS in WordPress

Introduction I found a Stored Cross Site Scripting vulnerability in WordPress that got rejected and got labeled as Informative by the WordPress Team. Today is the 45th day since I…

Read More

About The Blog

I created this blog to share the knowledge I've gained over the years and things that I'm yet to learn. Presently, my posts will be mainly focused on Open Source software, Information Security and Hacking. Happy Learning!

Recent Posts

  • ModSecurity with OWASP CRS – Part 1: Installation
  • CVE-2022-33012:- Account Takeover Through Password Reset Poisoning
  • CVE-2022-33994:- Stored XSS in WordPress
  • Microsxxt Azure Global Admin MFA Bypass
  • Multiple Vulnerabilities in Idno – Known PHP CMS software
  • Deploying a Shadowsocks Server to GCP using Terraform
  • Installing Vaultwarden server with Apache and SSLH proxy

Archives

  • January 2023
  • October 2022
  • July 2022
  • June 2022
  • April 2022
  • March 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021

Categories

  • CVE writeups
  • CVEs and Not CVEs
  • ModSecurity
  • Not CVE writeups
  • PHP Basic
  • Projects
  • Secure Code Warrior
  • Tutorials
  • Writeups

Tags

access control Account Takeover algorithm apache Azure Bitwarden broken auth CMS code Core Rule Set CVE dns docker Email first post gcloud cli git Google Cloud HCL HTTP Headers IDOR injection installing-openvpn-as iptables Linode Linux mail MFA Microsxxt MITRE mysql nextcloud Open Source openvpn OpenVPN 3 ovpn-dco OWASP pagespeed password manager path traversal performance php php-fpm postfix proxy restricting-ssh rootless docker securing-ssh security security misconfig sensitive data exposure Shadowsocks SMIL sql ssh ssl sslh sslh-proxy su sudo SVG Terraform transparent-sslh two-factor-auth ubuntu vulnerability WAF webserver WordPress XSS

Contact Me

  • GitHub
  • LinkedIn
  • Mail
  • GitHub
© 2023 Jitendra Patro.