Authenticated Time Based SQL Injection in WordPress Participants Database Plugin <= 188.8.131.52 (CVE-2020-8596)
Writeup with PoC for an authenticated time based SQL injection exploit identified in the Participants Database WordPress Plugin version <= 184.108.40.206.
An XSS was identified in the WordPress Elementor Plugin version 2.8.4 and below. This could allow an attacker to hijack session cookies. Update now!