The Transposh WordPress Translation plugin for WordPress is not safe to use in versions up to 1.0.7. An unauthenticated attacker could inject malicious scripts into pages of the website which would be executed whenever a user accesses them. This is because the plugin does not properly check the input from the attacker and does not protect the output from being changed.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
