BallastSecurity
Forum Replies Created
-
lol, wrong support forums. This is a completely unrelated plugin by an unrelated author. To be honest though, he is a bit of a jerk, so I had a good laugh.
You are looking for http://ww.wp.xz.cn/extend/plugins/ballast-security-securing-hashing/ which I develop.
Its fixed. I would credit you, but your hostile attitude and lack of cooperation leave without the desire to.
Have a nice day.
Just say phishing then ffs.
Its nice of you to act like a mature adult like this.I’m marking this as resolved until I’m shown otherwise. A nonce is not needed there, and I would prefer if supposed vulnerabilities contained a proof of concept.
Just curious, which version to which version caused the lock out?
Can you supply a proof of concept?
I understand the what section you are referencing, but code should only be run there if in the admin dashboard.curl -d "hashtype=1" http://localhost/wordpress/wp-content/plugins/BallastSecurityHasher/BallastSecurityHasher.phpandcurl -d "hashtype=1" http://localhost/wordpress/wp-admin/admin.php?page=bssh_configfailed to change the hashtype.