Skip to main content

Translate Wordpress With Gtranslate

3 CVEs product

Monthly

CVE-2023-4502 MEDIUM POC This Month

The Translate WordPress with GTranslate WordPress plugin before 3.0.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Translate Wordpress With Gtranslate
NVD WPScan
CVSS 3.1
4.8
EPSS
0.4%
CVE-2022-0770 HIGH POC This Week

The Translate WordPress with GTranslate WordPress plugin before 2.9.9 does not have CSRF check in some files, and write debug data such as user's cookies in a publicly accessible file if a specific. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress Translate Wordpress With Gtranslate
NVD WPScan
CVSS 3.1
8.8
EPSS
0.6%
CVE-2020-11930 MEDIUM POC PATCH This Month

The GTranslate plugin before 2.8.52 for WordPress has Reflected XSS via a crafted link. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Translate Wordpress With Gtranslate
NVD
CVSS 3.1
6.1
EPSS
4.5%
EPSS 0% CVSS 4.8
MEDIUM POC This Month

The Translate WordPress with GTranslate WordPress plugin before 3.0.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Translate Wordpress With Gtranslate
NVD WPScan
EPSS 1% CVSS 8.8
HIGH POC This Week

The Translate WordPress with GTranslate WordPress plugin before 2.9.9 does not have CSRF check in some files, and write debug data such as user's cookies in a publicly accessible file if a specific. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress Translate Wordpress With Gtranslate
NVD WPScan
EPSS 4% CVSS 6.1
MEDIUM POC PATCH This Month

The GTranslate plugin before 2.8.52 for WordPress has Reflected XSS via a crafted link. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Translate Wordpress With Gtranslate
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy