WordPress GiveWP POP to RCE (CVE-2024-5932)
A few days ago, Wordfence published a blog post about a PHP Object Injection vulnerability affecting the popular WordPress Plugin GiveWP in all versions donor_meta->get_meta()…
Category: Mix
The Real Problem With the Job Market
Table of Contents The feeling If you’re like me, you’ve had this strange, uneasy feeling about the job market1 for a few years now. The…
What tech leaders do before going on vacation
As a technical person who leads a technical team, I know firsthand that it can be easy to get lost in finishing up your own…
Measuring productivity with GitHub issues
How long does it take for a bug to get squashed, or for a pull request to be merged? What kind of issues take the…
Optimizing text for ChatGPT: NLP and text pre-processing techniques
In order for chatbots and voice assistants to be helpful, they need to be able to take in and understand our instructions in plain language…
Retail Under Attack: 6 Learnings from a Retail Customer
1. Retail and E-commerce Are Prone to Credential-based Attacks “Credential-based attacks are evergreen.” When asked what significant security threats are prevalent in the retail and…
A complete guide to exploiting advanced CSRF vulnerabilities
Cross-site request forgery—or for short CSRF—vulnerabilities are one of the most exploited web security vulnerabilities that result in performing unwanted actions. This client-side vulnerability can…
Try it for yourself: the latest PortSwigger Research from Black Hat USA
Amelia Coen | 23 August 2024 at 07:44 UTC The modern web is constantly developing, with new potential vulnerabilities emerging all the time. Ensuring your…
The Data Wall, Agents, and Planning-Based Evals · Joseph Thacker
I’ve been thinking a lot about the whole “data wall” thing with LLMs lately. It’s the idea that LLMs can’t or won’t improve because we’ve…
My paper to-do strategy | victoria.dev
Coding up a to-do app may be the Hello, World of every framework, but when it comes to actually tracking tasks effectively (knock ’em out…
Git branching for small teams
Here’s a practice I use personally and encourage within my open source projects and any small teams I run for work. I’ve seen major elements…
Post to your static website from your iPhone
I love websites. I love static sites in particular. But I know that sometimes it’s just not practical to write and post only from your…