Vulnerability Details CVE-2020-11930
The GTranslate plugin before 2.8.52 for WordPress has Reflected XSS via a crafted link. This requires use of the hreflang tags feature within a sub-domain or sub-directory paid option.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.108
EPSS Ranking 93.0%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- https://plugins.trac.wordpress.org/changeset/2245581/gtranslate
- https://plugins.trac.wordpress.org/changeset/2245591/gtranslate
- https://wordpress.org/plugins/gtranslate/#developers
- https://wpvulndb.com/vulnerabilities/10181
- https://plugins.trac.wordpress.org/changeset/2245581/gtranslate
- https://plugins.trac.wordpress.org/changeset/2245591/gtranslate
- https://wordpress.org/plugins/gtranslate/#developers
- https://wpvulndb.com/vulnerabilities/10181
Products affected by CVE-2020-11930
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:-
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.0
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.1
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.10
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.11
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.12
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.13
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.14
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.15
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.16
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.17
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.18
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.19
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.2
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.20
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.21
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.22
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.23
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.24
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.25
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.26
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.27
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.28
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.29
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.3
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.30
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.33
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.34
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.35
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.36
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.37
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.38
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.4
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.5
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.6
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.7
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.8
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:1.0.9
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.1
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.10
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.11
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.12
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.13
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.14
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.15
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.16
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.17
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.18
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.19
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.2
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.20
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.21
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.3
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.4
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.5
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.6
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.7
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.8
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.0.9
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.1
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.10
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.11
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.12
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.13
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.14
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.15
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.16
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.17
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.18
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.19
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.2
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.20
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.21
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.22
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.23
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.24
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.25
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.26
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.27
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.28
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.29
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.3
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.30
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.31
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.32
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.33
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.34
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.35
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.36
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.37
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.38
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.39
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.4
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.40
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.41
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.42
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.43
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.44
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.45
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.46
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.47
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.48
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.49
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.5
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.50
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.51
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.6
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.7
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.8
-
cpe:2.3:a:gtranslate:translate_wordpress_with_gtranslate:2.8.9