Vulnerabilities > Transposh > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-15 | CVE-2022-2536 | Unspecified vulnerability in Transposh Wordpress Translation The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting changes by unauthenticated users in versions up to, and including, 1.0.8.1. | 7.5 |
| 2022-08-22 | CVE-2022-25811 | Unspecified vulnerability in Transposh Wordpress Translation The Transposh WordPress Translation WordPress plugin through 1.0.8 does not sanitise and escape the order and orderby parameters before using them in a SQL statement, leading to a SQL injection | 7.2 |
| 2022-08-22 | CVE-2022-25812 | Unspecified vulnerability in Transposh Wordpress Translation The Transposh WordPress Translation WordPress plugin before 1.0.8 does not validate its debug settings, which could allow allowing high privilege users such as admin to perform RCE | 7.2 |