PT-2025-38770 · WordPress · Language Translate Widget For Wordpress – Conveythis
Mcdruid
·
Published
2025-09-22
·
Updated
2025-09-22
·
CVE-2025-57919
CVSS v3.1
7.2
High
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ConveyThis Language Translate Widget for WordPress versions through 264
Description
The ConveyThis Language Translate Widget for WordPress is susceptible to deserialization of untrusted data, which allows for object injection. This issue could potentially allow an attacker to compromise the system by manipulating serialized data.
Recommendations
Update ConveyThis Language Translate Widget for WordPress to a version later than 264.
Fix
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Language Translate Widget For Wordpress – Conveythis