Authenticated Time Based SQL Injection in WordPress Participants Database Plugin <= 220.127.116.11 (CVE-2020-8596)
Writeup with PoC for an authenticated time based SQL injection exploit identified in the Participants Database WordPress Plugin version <= 18.104.22.168.
An XSS was identified in the WordPress Elementor Plugin version 2.8.4 and below. This could allow an attacker to hijack session cookies. Update now!