cleantalk
Vulnerabilities and Security Researches

Translate WordPress with GTranslate, CVE-2020-11930

CVE, Research URL

CVE-2020-11930

Home page URL

Security reports for Translate WordPress with GTranslate

Application

Translate WordPress with GTranslate

Published on
Apr 20, 2020
Research Description
The GTranslate plugin before 2.8.52 for WordPress has Reflected XSS via a crafted link. This requires use of the hreflang tags feature within a sub-domain or sub-directory paid option.
Affected versions
max 2.8.52.
Status
vulnerable
Previous vulnerability researches
Translate WordPress with GTranslate (CVE-2021-34630) , Jun 07, 2024
Translate WordPress with GTranslate (CVE-2021-25103) , Jun 07, 2024
Translate WordPress with GTranslate (CVE-2020-11930) , Jun 07, 2024
Translate WordPress with GTranslate (CVE-2022-0770) , Jun 07, 2024
Translate WordPress with GTranslate (CVE-2023-4502) , Jun 07, 2024
New vulnerability
Contact Form 7 Database Addon – CFDB7 , Feb 17, 2026
GoSMTP – SMTP for WordPress , Feb 17, 2026
User Role Editor , Feb 16, 2026
Post Types Order , Feb 11, 2026
Code Snippets , Feb 09, 2026