VYPR

Wpglobus Translate Options

by WordPress

CVEs (2)

  • CVE-2024-9434MedOct 31, 2024
    risk 0.40cvss 6.1epss 0.00

    The WPGlobus Translate Options plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.0. This is due to missing or incorrect nonce validation on the on__translate_options_page() function. This makes it possible for…

  • CVE-2023-25711MedApr 7, 2023
    risk 0.38cvss 5.8epss 0.00

    Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPGlobus WPGlobus Translate Options plugin <= 2.1.0 versions.