Aggregates CVE and security vulnerability intelligence across all srbtranslatin_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk cross-site scripting and vendor risk csrf; exposure may include vendor impact session compromise in vendor surface software deployment contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-1119 | The WP-Optimize WordPress plugin before 3.2.13, SrbTransLatin WordPress plugin before 2.4.1 use a third-party library that removes the escaping on some HTML characters, leading to a cross-site scripting vulnerability. | [email protected] | 6.1 | 24.22% | 2023-07-10 | 2025-01-06 |
| CVE-2018-5369 | The SrbTransLatin plugin 1.46 for WordPress has XSS via an srbtranslatoptions action to wp-admin/options-general.php with a lang_identificator parameter. | [email protected] | 4.8 | 0.22% | 2018-01-12 | 2024-11-21 |
| CVE-2018-5368 | The SrbTransLatin plugin 1.46 for WordPress has CSRF via an srbtranslatoptions action to wp-admin/options-general.php. | [email protected] | 8.8 | 0.23% | 2018-01-12 | 2024-11-21 |