Gtranslate

Translate Wordpress With Gtranslate

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8

CVE-2023-4502

Exploit
  • EPSS 0.08%
  • Veröffentlicht 25.09.2023 16:15:15
  • Zuletzt bearbeitet 02.05.2025 17:15:48

The Translate WordPress with GTranslate WordPress plugin before 3.0.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html...

8.8

CVE-2022-0770

Exploit
  • EPSS 0.3%
  • Veröffentlicht 28.03.2022 18:15:09
  • Zuletzt bearbeitet 21.11.2024 06:39:21

The Translate WordPress with GTranslate WordPress plugin before 2.9.9 does not have CSRF check in some files, and write debug data such as user's cookies in a publicly accessible file if a specific parameter is used when requesting them. Combining th...

4.7

CVE-2021-25103

Exploit
  • EPSS 0.21%
  • Veröffentlicht 07.02.2022 16:15:45
  • Zuletzt bearbeitet 21.11.2024 05:54:21

The Translate WordPress with GTranslate WordPress plugin before 2.9.7 does not sanitise and escape the body parameter in the url_addon/gtranslate-email.php file before outputting it back in the page, leading to a Reflected Cross-Site Scripting issue....

6.1

CVE-2020-11930

  • EPSS 4.45%
  • Veröffentlicht 20.04.2020 01:15:11
  • Zuletzt bearbeitet 21.11.2024 04:58:55

The GTranslate plugin before 2.8.52 for WordPress has Reflected XSS via a crafted link. This requires use of the hreflang tags feature within a sub-domain or sub-directory paid option.