Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 31 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-4146 Loco Translate <= 2.8.2 - Reflected Cross-Site Scripting via 'update_href' Parameter timwhitlockLoco Translate Medium 6.1 2026-03-31 04:25:33 Deep Dive
CVE-2025-10008 Translate WordPress and go Multilingual – Weglot <= 5.1 - Missing Authorization to Unauthenticated Limited Transient Deletion remyb92Translate WordPress with Weglot – Multilingual AI Translation Medium 5.3 2025-10-30 05:28:28 Deep Dive
CVE-2025-62699 Special:Translate tool does not use the correct IP and User-Agent in the CheckUser tool The Wikimedia FoundationMediawiki - Translate Extension--2025-10-21 03:48:50 Deep Dive
CVE-2025-8425 My WP Translate <= 1.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update mythemeshopMy WP Translate High 8.8 2025-09-11 07:25:02 Deep Dive
CVE-2025-8423 My WP Translate <= 1.1 - Authenticated (Subscriber+) Missing Authorization to Arbitrary Option Read and Deletion mythemeshopMy WP Translate Medium 5.4 2025-09-11 07:24:54 Deep Dive
CVE-2025-58880 WordPress Translate This gTranslate Shortcode Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability reubenthiessenTranslate This gTranslate Shortcode Medium 6.5 2025-09-05 13:45:50 Deep Dive
CVE-2025-8719 Translate This - Google Translate Web Element Shortcode <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via base_lang Parameter reubenthiessenTranslate This gTranslate Shortcode Medium 6.4 2025-08-16 08:27:07 Deep Dive
CVE-2024-37236 WordPress Loco Translate plugin <= 2.6.9 - Cross Site Request Forgery (CSRF) vulnerability Tim WLoco Translate Medium 4.3 2025-01-02 12:00:43 Deep Dive
CVE-2024-38792 WordPress ConveyThis Translate plugin <= 234 - Non-arbitrary Options Update vulnerability ConveyThis Translate TeamLanguage Translate Widget for WordPress – ConveyThis Medium 5.3 2024-11-01 14:17:56 Deep Dive
CVE-2024-9434 WPGlobus Translate Options <= 2.2.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting alexgffWPGlobus Translate Options Medium 6.1 2024-10-31 06:48:56 Deep Dive
CVE-2021-4452 Google Language Translator <= 6.0.9 - Reflected Cross-Site Scripting edo888Translate WordPress – Google Language Translator High 7.1 2024-10-16 07:31:52 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-35663 WordPress WP Translate plugin <= 5.3.0 - Broken Access Control vulnerability HahnCreativeGroupWP Translate Medium 5.4 2024-06-11 14:17:23 Deep Dive
CVE-2024-0632 Automatic Translator with Google Translate <= 1.5.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via Custom Font juangiriniAutomatic Translator with Google Translate Medium 4.4 2024-05-22 07:37:23 Deep Dive
CVE-2023-6811 Language Translate Widget for WordPress – ConveyThis <= 223 - Unauthenticated Stored Cross-Site Scripting via api_key conveythisTranslate WordPress Websites Globally with ConveyThis Translate High 7.2 2024-04-11 01:51:37 Deep Dive
CVE-2024-29042 Translate Cache Poisoning Vulnerability franciscoptranslate Medium 5.3 2024-03-22 16:46:21 Deep Dive
CVE-2024-2124 Translate WordPress and go Multilingual – Weglot <= 4.2.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Attributes remyb92Translate WordPress with Weglot – Multilingual AI Translation Medium 6.4 2024-03-20 04:32:16 Deep Dive
CVE-2023-49161 WordPress Bravo Translate Plugin <= 1.2 is vulnerable to SQL Injection GuelbenBravo Translate High 7.6 2023-12-20 17:31:33 Deep Dive
CVE-2023-48711 Server-Side Request Forgery (SSRF) Vulnerability in google-translate-api-browser cjvnjdegoogle-translate-api-browser Low 3.7 2023-11-24 17:06:15 Deep Dive
CVE-2023-4502 Translate WordPress with GTranslate < 3.0.4 - Admin+ Stored XSS UnknownTranslate WordPress with GTranslate 中危 -2023-09-25 15:56:55 Deep Dive