PT-2023-20265 · WordPress · Wpglobus Translate Options

Thiennv

Published

2023-04-07

Updated

2023-04-12

CVE-2023-25711

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions WPGlobus WPGlobus Translate Options plugin versions prior to 2.1.0

Description The issue is related to an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This vulnerability allows for reflected cross-site scripting attacks without authentication.

Recommendations For versions prior to 2.1.0, update to version 2.1.0 or later to resolve the issue. At the moment, there is no other information about additional mitigation measures for this vulnerability.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-25711

Affected Products

Wpglobus Translate Options

PT-2023-20265 · WordPress · Wpglobus Translate Options

CVE-2023-25711

Weakness Enumeration

Related Identifiers

Affected Products

References · 4