Prisna

Google Website Translator

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8

CVE-2024-12680

Exploit
  • EPSS 0.06%
  • Veröffentlicht 15.05.2025 20:15:36
  • Zuletzt bearbeitet 28.05.2025 15:43:17

The Prisna GWT WordPress plugin before 1.4.14 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallow...

4.8

CVE-2024-12679

Exploit
  • EPSS 0.06%
  • Veröffentlicht 15.05.2025 20:15:35
  • Zuletzt bearbeitet 28.05.2025 15:43:27

The Prisna GWT WordPress plugin before 1.4.14 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallow...

7.2

CVE-2024-8514

  • EPSS 1.96%
  • Veröffentlicht 25.09.2024 04:15:04
  • Zuletzt bearbeitet 02.10.2024 19:59:17

The Prisna GWT – Google Website Translator plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.11 via deserialization of untrusted input from the 'prisna_import' parameter. This makes it possible for a...