CVE-2022-25812
Transposh WordPress Translation < 1.0.8 - Admin+ RCE
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
22 Aug 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The Transposh WordPress Translation WordPress plugin before 1.0.8 does not validate its debug settings, which could allow allowing high privilege users such as admin to perform RCE
Affected products
Unknown · Transposh WordPress TranslationWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →