Authenticated Time Based SQL Injection in WordPress Participants Database Plugin <= 18.104.22.168 (CVE-2020-8596)
Writeup with PoC for an authenticated time based SQL injection exploit identified in the Participants Database WordPress Plugin version <= 22.214.171.124.
An XSS was identified in the WordPress Elementor Plugin version 2.8.4 and below. This could allow an attacker to hijack session cookies. Update now!