Authenticated Time Based SQL Injection in WordPress Participants Database Plugin <= 22.214.171.124 (CVE-2020-8596)
Writeup with PoC for an authenticated time based SQL injection exploit identified in the Participants Database WordPress Plugin version <= 126.96.36.199.
An XSS was identified in the WordPress Elementor Plugin version 2.8.4 and below. This could allow an attacker to hijack session cookies. Update now!