Lucene search
WPScanCVELIST:CVE-2022-25811HistoryAug 22, 2022 - 2:58 p.m.
CVE-2022-25811 Transposh WordPress Translation <= 1.0.8 - Admin+ SQL Injection
2022-08-2214:58:47
CWE-89
WPScan
www.cve.org
1
cve-2022-25811
transposh wordpress translation
sql injection
EPSS
0.001
Percentile
37.7%
The Transposh WordPress Translation WordPress plugin through 1.0.8 does not sanitise and escape the order and orderby parameters before using them in a SQL statement, leading to a SQL injection
CNA Affected
[
{
"product": "Transposh WordPress Translation",
"vendor": "Unknown",
"versions": [
{
"lessThanOrEqual": "1.0.8",
"status": "affected",
"version": "1.0.8",
"versionType": "custom"
}
]
}
]Related
zdt
zdt
Transposh WordPress Translation 1.0.8.1 SQL Injection Vulnerability
2022-07-31 00:00:00
nvd
nvd
CVE-2022-25811
2022-08-22 15:15:14
prion
prion
Sql injection
2022-08-22 15:15:00
cve
cve
CVE-2022-25811
2022-08-22 15:15:14
packetstorm
packetstorm
Transposh WordPress Translation 1.0.8.1 SQL Injection
2022-07-29 00:00:00
wpvulndb
wpvulndb
Transposh WordPress Translation <= 1.0.8 - Admin+ SQL Injection
2022-07-26 00:00:00
cnvd
cnvd
WordPress Transposh WordPress Translation SQL Injection Vulnerability
2022-08-02 00:00:00
wpexploit
wpexploit
Transposh WordPress Translation <= 1.0.8 - Admin+ SQL Injection
2022-07-26 00:00:00