3 matches found
WordPress Translate This plugin <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via base_lang Parameter vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via baselang Parameter vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Translate This gTranslate Shortcode versions = 1.0...
CVE-2025-8719
The Translate This gTranslate Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘baselang’ parameter in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2025-8719
CVE-2025-8719 documents a Stored Cross-Site Scripting vulnerability in Translate This gTranslate Shortcode for WordPress, affecting all versions up to 1.0. The issue is triggered via the base_lang parameter and requires authentication at Contributor level or higher to inject scripts that execute ...