Vulnerabilities > Wpglobus

DATE CVE VULNERABILITY TITLE RISK
2023-04-07 CVE-2023-25711 Cross-site Scripting vulnerability in Wpglobus Translate Options
Unauth.
network
low complexity
wpglobus CWE-79
6.1
6.1
2018-01-12 CVE-2018-5367 Cross-site Scripting vulnerability in Wpglobus 1.9.6
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[post_type][post] parameter to wp-admin/options.php.
network
wpglobus CWE-79
3.5
3.5
2018-01-12 CVE-2018-5366 Cross-site Scripting vulnerability in Wpglobus 1.9.6
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[more_languages] parameter to wp-admin/options.php.
network
wpglobus CWE-79
3.5
3.5
2018-01-12 CVE-2018-5365 Cross-site Scripting vulnerability in Wpglobus 1.9.6
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[selector_wp_list_pages][show_selector] parameter to wp-admin/options.php.
network
wpglobus CWE-79
3.5
3.5
2018-01-12 CVE-2018-5364 Cross-site Scripting vulnerability in Wpglobus 1.9.6
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[browser_redirect][redirect_by_language] parameter to wp-admin/options.php.
network
wpglobus CWE-79
3.5
3.5
2018-01-12 CVE-2018-5363 Cross-site Scripting vulnerability in Wpglobus 1.9.6
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[enabled_languages][en] or wpglobus_option[enabled_languages][fr] (or any other language) parameter to wp-admin/options.php.
network
wpglobus CWE-79
3.5
3.5
2018-01-12 CVE-2018-5362 Cross-site Scripting vulnerability in Wpglobus 1.9.6
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[post_type][page] parameter to wp-admin/options.php.
network
wpglobus CWE-79
3.5
3.5
2018-01-12 CVE-2018-5361 Cross-Site Request Forgery (CSRF) vulnerability in Wpglobus 1.9.6
The WPGlobus plugin 1.9.6 for WordPress has CSRF via wp-admin/options.php.
network
wpglobus CWE-352
6.8
6.8