Lucene search
Tomi AshariPATCHSTACK:AD3373863904130E5D2F74123FF0272CHistoryOct 11, 2021 - 12:00 a.m.
WordPress Loco Translate plugin <= 2.5.3 - Authenticated PHP Code Injection vulnerability
2021-10-1100:00:00
Tomi Ashari
patchstack.com
5
0.001 Low
EPSS
Percentile
31.2%
Authenticated PHP Code Injection vulnerability discovered by Tomi Ashari in WordPress Loco Translate plugin (versions <= 2.5.3).
Solution
Update the WordPress Loco Translate plugin to the latest available version (at least 2.5.4).
| CPE | Name | Operator | Version |
|---|---|---|---|
| loco translate | le | 2.5.3 |
Related
cvelist
cvelist
CVE-2021-24721 Loco Translate < 2.5.4 - Authenticated PHP Code Injection
2021-11-08 17:35:14
prion
prion
Code injection
2021-11-08 18:15:00
wpvulndb
wpvulndb
Loco Translate < 2.5.4 - Authenticated PHP Code Injection
2021-10-11 00:00:00
cve
cve
CVE-2021-24721
2021-11-08 18:15:09
cnvd
cnvd
WordPress Plugin Code Injection Vulnerability (CNVD-2021-101468)
2021-11-10 00:00:00
nvd
nvd
CVE-2021-24721
2021-11-08 18:15:09
openvas
openvas
WordPress Loco Translate Plugin < 2.5.4 PHP Injection Vulnerability
2021-11-16 00:00:00
wpexploit
wpexploit
Loco Translate < 2.5.4 - Authenticated PHP Code Injection
2021-10-11 00:00:00