January 4, 2021

Potential risk in administrating a personal WP app on corporate computer?

Blue teamer here, I noticed today one of our users was uploading some image files to a WordPress webapp they seem to own. My team’s concern is not wasting company time, but rather anything that could threaten the security of the organization. From that perspective, does anyone know if this could be used as an attack vector? If an attacker were to exploit a vuln in either WP itself or its plugins, is there a way they may pivot into our network or gain information on it. I’m thinking no, but I also do not know a lot about WP.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.