This archive contains all of the 68 exploits added to Packet Storm in July, 2022.
>> CATEGORY: exploit
This archive contains all of the 68 exploits added to Packet Storm in July, 2022.
WordPress WP-UserOnline plugin versions 2.87.6 and below suffer from a persistent cross site scripting vulnerability.
Transposh WordPress Translation versions 1.0.7 and below have an ajax action “tp_tp” that is vulnerable to an unauthenticated/authenticated reflected cross site scripting vulnerability when user-supplied input to the HTTP GET…
Transposh WordPress Translation versions 1.0.7 and below have an ajax action “tp_translation” which is available to authenticated or unauthenticated users (see CVE-2022-2461) that allows them to submit new translations. Translations…
Dingtian-DT-R002 version 3.1.276A suffers from an authentication bypass vulnerability.
rpc.py version 0.6.0 suffers from a remote code execution vulnerability.
Transposh WordPress Translation versions 1.0.7 and below suffer from an incorrect authorization vulnerability. When installed, Transposh comes with a set of pre-configured options, one of these is the “Who can…
Transposh WordPress Translation versions 1.0.8.1 and below suffer from cross site request forgery vulnerabilities.
Crime Reporting System version 1.0 suffers from a persistent cross site scripting vulnerability.