Lucene search
+L

7 matches found

patchstack
patchstack
added 2025/07/17 12:13 p.m.13 views

WordPress Transposh WordPress Translation plugin <= 1.0.8.1 - Authenticated (Admin+) SQL Injection via 'tp_editor' vulnerability

Authenticated Admin+ SQL Injection via 'tpeditor' vulnerability discovered by Julien Ahrens in WordPress Plugin Transposh WordPress Translation versions = 1.0.8.1...

7.2CVSS7.7AI score0.01202EPSS
Exploits5References2Affected Software1
nvd
nvd
added 2022/08/22 3:15 p.m.24 views

CVE-2022-25811

The Transposh WordPress Translation WordPress plugin through 1.0.8 does not sanitise and escape the order and orderby parameters before using them in a SQL statement, leading to a SQL injection...

7.2CVSS0.01202EPSS
Exploits5References1
attackerkb
attackerkb
added 2022/08/22 3:15 p.m.4 views

CVE-2022-25811

The Transposh WordPress Translation WordPress plugin through 1.0.8 does not sanitise and escape the order and orderby parameters before using them in a SQL statement, leading to a SQL injection...

7.2CVSS7.2AI score0.01202EPSS
Exploits5References2
osv
osv
added 2022/08/22 3:15 p.m.5 views

CVE-2022-25811

The Transposh WordPress Translation WordPress plugin through 1.0.8 does not sanitise and escape the order and orderby parameters before using them in a SQL statement, leading to a SQL injection...

7.2CVSS7.3AI score0.01202EPSS
Exploits5References1
cve
cve
added 2022/08/22 2:58 p.m.75 views

CVE-2022-25811

The CVE-2022-25811 entry concerns the Transposh WordPress Translation plugin for WordPress, affected in versions 1.0.8 and earlier (

7.2CVSS7.2AI score0.01202EPSS
Exploits5References1Affected Software1
cvelist
cvelist
added 2022/08/22 2:58 p.m.22 views

CVE-2022-25811 Transposh WordPress Translation <= 1.0.8 - Admin+ SQL Injection

The Transposh WordPress Translation WordPress plugin through 1.0.8 does not sanitise and escape the order and orderby parameters before using them in a SQL statement, leading to a SQL injection...

7.5AI score0.01202EPSS
Exploits5References1
packetstorm
packetstorm
added 2022/07/29 12:0 a.m.392 views

Transposh WordPress Translation 1.0.8.1 SQL Injection

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Improper Authorization CWE-285 Date found: 2022-02-21 Date...

0.2AI score0.01202EPSS
Exploits5
Rows per page
Query Builder