exploitDog

CVE-2022-25812

Опубликовано: 22 авг. 2022

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

The Transposh WordPress Translation WordPress plugin before 1.0.8 does not validate its debug settings, which could allow allowing high privilege users such as admin to perform RCE

Ссылки

https://wpscan.com/vulnerability/1f6bd346-4743-44b8-86d7-4fbe09bad657
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/1f6bd346-4743-44b8-86d7-4fbe09bad657
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:transposh:transposh_wordpress_translation:*:*:*:*:*:wordpress:*:*

Версия до 1.0.8 (исключая)

EPSS

Процентиль: 79%

0.01322

Низкий

7.2 High

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-r3hj-92hh-4g2x

CVSS3: 7.2

github

больше 3 лет назад

The Transposh WordPress Translation WordPress plugin before 1.0.8 does not validate its debug settings, which could allow allowing high privilege users such as admin to perform RCE

EPSS

Процентиль: 79%

0.01322

Низкий

7.2 High

CVSS3

Дефекты

CWE-94