top | item 31484425 (no title) dschiffner | 3 years ago his admin creds were probablyadmin / abcd123! discuss order hn newest waynesonfire|3 years ago Guessing passwords? You don't even have to try that hard. Have you seen the list of WordPress CVEs?Here is one just from January of this year,https://www.debian.org/security/2022/dsa-5039"Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform SQL injection, run unchecked SQL queries, bypass hardening, or perform Cross-Site Scripting (XSS) attacks." dschiffner|3 years ago Sure have! Mentioning the admin creds were more so tongue in cheek because there are a lot of folks who use the default 'admin' username.
waynesonfire|3 years ago Guessing passwords? You don't even have to try that hard. Have you seen the list of WordPress CVEs?Here is one just from January of this year,https://www.debian.org/security/2022/dsa-5039"Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform SQL injection, run unchecked SQL queries, bypass hardening, or perform Cross-Site Scripting (XSS) attacks." dschiffner|3 years ago Sure have! Mentioning the admin creds were more so tongue in cheek because there are a lot of folks who use the default 'admin' username.
dschiffner|3 years ago Sure have! Mentioning the admin creds were more so tongue in cheek because there are a lot of folks who use the default 'admin' username.
waynesonfire|3 years ago
Here is one just from January of this year,
https://www.debian.org/security/2022/dsa-5039
"Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform SQL injection, run unchecked SQL queries, bypass hardening, or perform Cross-Site Scripting (XSS) attacks."
dschiffner|3 years ago