Tag Archives: Cross-site scripting

photo credit: Melissa Maples I came across an interesting point that outlines that dangers of using $_SERVER variables to submit form, a practice that’s pretty common in WordPress plugins. The problem is that it opens the form up to be … Continue reading →