Lädt...


💾 Transposh WordPress Translation 1.0.7 Cross Site Scripting


Nachrichtenbereich: 💾 IT Security Tools
🔗 Quelle: packetstormsecurity.com

Transposh WordPress Translation versions 1.0.7 and below have an ajax action "tp_translation" which is available to authenticated or unauthenticated users (see CVE-2022-2461) that allows them to submit new translations. Translations submitted this way are shown on the Transposh administrative interface on the pages "tp_main" and "tp_editor". However, since the plugin does not properly validate and sanitize the submitted translation, arbitrary Javascript code can be permanently injected and executed directly within the backend across all users visiting the page with the roles of at least "Subscriber" and up to "Administrator". ...

⚠️ #0daytoday #Transposh WordPress Translation 1.0.7 Cross Site Scripting Vulnerability [#0day #Exploit]


📈 49.09 Punkte
⚠️ PoC

⚠️ #0daytoday #Transposh WordPress Translation 1.0.7 Cross Site Scripting Vulnerability (2) [#0day #Exploit]


📈 49.09 Punkte
⚠️ PoC

💾 Transposh WordPress Translation 1.0.7 Cross Site Scripting


📈 49.09 Punkte
💾 IT Security Tools

💾 Transposh WordPress Translation 1.0.7 Cross Site Scripting


📈 49.09 Punkte
💾 IT Security Tools

💾 Transposh WordPress Translation 1.0.8.1 Cross Site Request Forgery


📈 45.92 Punkte
💾 IT Security Tools

⚠️ #0daytoday #Transposh WordPress Translation 1.0.8.1 Improper Authorization Vulnerability [#0day #Exploit]


📈 40.28 Punkte
⚠️ PoC

⚠️ #0daytoday #Transposh WordPress Translation 1.0.8.1 Remote Code Execution Vulnerability [#0day #Exploit]


📈 40.28 Punkte
⚠️ PoC

💾 Transposh WordPress Translation 1.0.7 Incorrect Authorization


📈 40.28 Punkte
💾 IT Security Tools

💾 Transposh WordPress Translation 1.0.8.1 Information Disclosure


📈 40.28 Punkte
💾 IT Security Tools

💾 Transposh WordPress Translation 1.0.8.1 Improper Authorization


📈 40.28 Punkte
💾 IT Security Tools

💾 Transposh WordPress Translation 1.0.8.1 SQL Injection


📈 40.28 Punkte
💾 IT Security Tools

💾 Transposh WordPress Translation 1.0.8.1 Remote Code Execution


📈 40.28 Punkte
💾 IT Security Tools

⚠️ #0daytoday #Transposh WordPress Translation 1.0.8.1 Incorrect Authorization Vulnerability [#0day #Exploit]


📈 40.28 Punkte
⚠️ PoC

💾 Transposh WordPress Translation 1.0.8.1 Incorrect Authorization


📈 40.28 Punkte
💾 IT Security Tools

⚠️ #0daytoday #Transposh WordPress Translation 1.0.8.1 Information Disclosure Vulnerability [#0day #Exploit]


📈 40.28 Punkte
⚠️ PoC

⚠️ #0daytoday #Transposh WordPress Translation 1.0.7 Incorrect Authorization Vulnerability [#0day #Exploit]


📈 40.28 Punkte
⚠️ PoC

🕵️ CVE-2023-42497 | Liferay Portal/DXP Export for Translation Page cross site scripting


📈 20.7 Punkte
🕵️ Sicherheitslücken

🕵️ Flarum up to 1.0.1 Translation System cross site scripting


📈 20.7 Punkte
🕵️ Sicherheitslücken

🕵️ WordPress MapFig Studio 0.2.1 Cross Site Request Forgery / Cross Site Scripting


📈 18.96 Punkte
🕵️ Sicherheitslücken

⚠️ WordPress Project Theme 2.0.95 Cross Site Request Forgery / Cross Site Scripting


📈 18.96 Punkte
⚠️ PoC

⚠️ WordPress Content Audit 1.9.1 Cross Site Request Forgery / Cross Site Scripting


📈 18.96 Punkte
⚠️ PoC

⚠️ WordPress CP Polls 1.0.8 Cross Site Request Forgery / Cross Site Scripting


📈 18.96 Punkte
⚠️ PoC

💾 WordPress Content Audit 1.9.1 Cross Site Request Forgery / Cross Site Scripting


📈 18.96 Punkte
💾 IT Security Tools

⚠️ [webapps] - WordPress Plugin Contact Form Manager - Cross-Site Request Forgery / Cross-Site Scripting


📈 18.96 Punkte
⚠️ PoC

matomo