01 June 2022 at 16:40 UTC
Updated: 01 June 2022 at 17:00 UTC
Technique skirts web security controls
The hack, discovered by security researcher Paulos Yibelo, relies on abusing same origin method execution.
This technique uses JSON padding to call a function. That’s the sort of thing that might allow the compromise of a WordPress account…