Authenticated Time Based SQL Injection in WordPress Participants Database Plugin <= 126.96.36.199 (CVE-2020-8596)
Writeup with PoC for an authenticated time based SQL injection exploit identified in the Participants Database WordPress Plugin version <= 188.8.131.52.
An XSS was identified in the WordPress Elementor Plugin version 2.8.4 and below. This could allow an attacker to hijack session cookies. Update now!