Unrated severityNVD Advisory· Published Aug 22, 2022· Updated Aug 3, 2024
Transposh WordPress Translation <= 1.0.8 - Admin+ SQL Injection
CVE-2022-25811
Description
The Transposh WordPress Translation WordPress plugin through 1.0.8 does not sanitise and escape the order and orderby parameters before using them in a SQL statement, leading to a SQL injection
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.0.8+ 1 more
- (no CPE)range: <=1.0.8
- (no CPE)range: 1.0.8
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/0e0d2c5f-3396-4a0a-a5c6-6a98de3802c9mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.