4 matches found
CVE-2022-4169
The Theme and plugin translation for Polylang is vulnerable to authorization bypass in versions up to, and including, 3.2.16 due to missing capability checks in the processpolylangthemetranslationwploaded function. This makes it possible for unauthenticated attackers to update plugin and theme...
CVE-2022-4169
The Theme and plugin translation for Polylang is vulnerable to authorization bypass in versions up to, and including, 3.2.16 due to missing capability checks in the processpolylangthemetranslationwploaded function. This makes it possible for unauthenticated attackers to update plugin and theme...
CVE-2022-4169 Theme and plugin translation for Polylang <= 3.2.16 - Missing Authorization
The Theme and plugin translation for Polylang is vulnerable to authorization bypass in versions up to, and including, 3.2.16 due to missing capability checks in the processpolylangthemetranslationwploaded function. This makes it possible for unauthenticated attackers to update plugin and theme...
CVE-2022-4169
The CVE-2022-4169 issue affects the Polylang WordPress plugin (Theme and plugin translation) up to and including version 3.2.16. The root cause is missing capability checks in the function process_polylang_theme_translation_wp_loaded(), enabling authorization bypass and allowing unauthenticated a...