Transposh WordPress Translation 1.0.8.1 Information Disclosure

Posted by deepcore on July 30, 2022 – 7:26 pm

Transposh WordPress Translation versions 1.0.8.1 and below have an ajax action called “tp_history” which is intended to return data about who has translated a text given by the “token” parameter. However, the plugin also returns the user’s login name as part of the “user_login” attribute. Successful exploits can allow an unauthenticated attacker to leak the WordPress username of translators. If an anonymous user submitted the translation, then the user’s IP address is returned.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Geonetwork 4.2.0 XML Injection Crime Reporting System 1.0 Cross Site Scripting »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Transposh WordPress Translation 1.0.8.1 Information Disclosure

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL