Unpatched sites could get pwned – but admins must fall for social engineering Image: Olesya Kuznetsova / Shutterstock / PortSwigger Ltd Users of NextGEN Gallery, the image management plugin for WordPress, have been urged to update their websites after the discovery of serious cross-site request forgery (CSRF) vulnerabilities. The […]

Click here to view original web page at portswigger.net