Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
polylang plugin project polylang vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2014-4855
Cross-site scripting (XSS) vulnerability in the Polylang plugin prior to 1.5.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via vectors related to a user description. NOTE: some of these details are obtained from third party information.
Polylang Plugin Project Polylang
Polylang Plugin Project Polylang 1.5
NA
CVE-2022-4169
The Theme and plugin translation for Polylang is vulnerable to authorization bypass in versions up to, and including, 3.2.16 due to missing capability checks in the process_polylang_theme_translation_wp_loaded() function. This makes it possible for unauthenticated malicious users...
Theme And Plugin Translation For Polylang Project Theme And Plugin Translation For Polylang
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started