{"id":982,"date":"2022-09-12T15:27:54","date_gmt":"2022-09-12T15:27:54","guid":{"rendered":"https:\/\/shreyapohekar.com\/blogs\/?p=982"},"modified":"2022-09-12T15:32:46","modified_gmt":"2022-09-12T15:32:46","slug":"raining-cves-on-wordpress-plugin-via-semgrep-nullcon-goa-2022-slide-deck","status":"publish","type":"post","link":"https:\/\/shreyapohekar.com\/blogs\/raining-cves-on-wordpress-plugin-via-semgrep-nullcon-goa-2022-slide-deck\/","title":{"rendered":"Raining CVEs on WordPress Plugin via Semgrep &#8211; Nullcon Goa 2022 Slide deck"},"content":{"rendered":"\n<p>Hey Folks! This blog post contains the slides and the demo videos for &#8220;Raining CVEs on wordpress plugins via semgrep&#8221; talk that <a href=\"https:\/\/sheerazali.com\">Sheeraz<\/a> and I presented in Nullcon Goa 2022.<\/p>\n\n\n\n<p>If you attended our talk, I hope that you enjoyed it. If not, feel free to have a look! You might get some idea about what the talk was.<\/p>\n\n\n\n<p>When the talk video is uploaded on the Nullcon&#8217;s youtube channel, I will add the link here!<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Slides<\/h2>\n\n\n\n<div class=\"wp-block-file\"><a id=\"wp-block-file--media-5ab2a278-0a63-4128-ac22-f21047e170be\" href=\"https:\/\/shreyapohekar.com\/blogs\/wp-content\/uploads\/2022\/09\/Realpresented-1.pptx\">Presentation for Nullcon Goa 2022<\/a><a href=\"https:\/\/shreyapohekar.com\/blogs\/wp-content\/uploads\/2022\/09\/Realpresented-1.pptx\" class=\"wp-block-file__button\" download aria-describedby=\"wp-block-file--media-5ab2a278-0a63-4128-ac22-f21047e170be\">Download<\/a><\/div>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Semgrep usage PoC <\/h2>\n\n\n\n<figure class=\"wp-block-video\"><video controls src=\"https:\/\/shreyapohekar.com\/blogs\/wp-content\/uploads\/2022\/09\/videodemo1.mp4\"><\/video><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">PoC video for XSSBomb<\/h2>\n\n\n\n<figure class=\"wp-block-video\"><video controls src=\"https:\/\/shreyapohekar.com\/blogs\/wp-content\/uploads\/2022\/09\/demo2.mp4\"><\/video><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>That&#8217;s all for this post.<\/p>\n\n\n\n<p>Let us know any questions\/comments that you might have.<\/p>\n\n\n\n<p>See you in the next one! Happy hunting! \ud83d\ude42<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This post is contains the talk slides and the demo videos that we presented in Nullcon Goa 2022.<\/p>\n","protected":false},"author":1,"featured_media":988,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[365,2],"tags":[368,367,243,366],"class_list":["post-982","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-conference","category-information-security","tag-48-cve","tag-cve","tag-nullcon","tag-talk","entry","has-media"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/posts\/982"}],"collection":[{"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/comments?post=982"}],"version-history":[{"count":4,"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/posts\/982\/revisions"}],"predecessor-version":[{"id":991,"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/posts\/982\/revisions\/991"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/media\/988"}],"wp:attachment":[{"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/media?parent=982"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/categories?post=982"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/shreyapohekar.com\/blogs\/wp-json\/wp\/v2\/tags?post=982"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}