6 matches found
WordPress Transposh WordPress Translation plugin <= 1.0.8.1 - Remote Code Execution vulnerability
Remote Code Execution vulnerability discovered by Julien Ahrens in WordPress Plugin Transposh WordPress Translation versions = 1.0.8.1...
CVE-2022-25812
The Transposh WordPress Translation WordPress plugin before 1.0.8 does not validate its debug settings, which could allow allowing high privilege users such as admin to perform RCE...
CVE-2022-25812
The CVE-2022-25812 entry concerns the Transposh WordPress Translation plugin for WordPress, affected in versions up to 1.0.8.1 (and earlier per sources). The vulnerability stems from the plugin’s handling of log/debug input in the save_transposh flow, specifically a missing log file extension che...
CVE-2022-25812 Transposh WordPress Translation < 1.0.8 - Admin+ RCE
The Transposh WordPress Translation WordPress plugin before 1.0.8 does not validate its debug settings, which could allow allowing high privilege users such as admin to perform RCE...
Transposh WordPress Translation 1.0.8.1 Remote Code Execution Vulnerability
ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Reliance on File Name or Extension of Externally-Supplied File CWE-646 Date found: 2022-02-21 Date published:...
Transposh WordPress Translation 1.0.8.1 Remote Code Execution
RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Reliance on File Name or Extension of Externally-Supplied File...