Rafie Muhammad
Yeraisci's Blog

Yeraisci's Blog

Follow
Rafie Muhammad

Rafie Muhammad

InfoSec Engineer. Focusing on web application security.

Authenticated LFI & RCE on GiveWP - Donation WordPress Plugin <= 2.20.2 (CVE-2022-31475 & CVE-2022-28700)

Jul 15, 20229 min read

Prologue GiveWP is one of the popular wordpress plugins to handle fundraising and donation with 100k+ installation. This plugin has main features like...

Authenticated LFI & RCE on GiveWP - Donation WordPress Plugin <= 2.20.2 (CVE-2022-31475 & CVE-2022-28700)
[Arkavidia 7.0 CTF Writeup] Arkavidia Atlas
[Tokopedia] Site-Wide CSRF Through Graphql Request