First published: Fri Jan 12 2018(Updated: )
The SrbTransLatin plugin 1.46 for WordPress has CSRF via an srbtranslatoptions action to wp-admin/options-general.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Srbtranslatin Project Srbtranslatin | =1.46 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2018-5368 is high.
CVE-2018-5368 affects WordPress through the SrbTransLatin plugin version 1.46.
CVE-2018-5368 is a cross-site request forgery (CSRF) vulnerability in the SrbTransLatin plugin 1.46 for WordPress, allowing attackers to perform unauthorized actions.
To fix CVE-2018-5368, update the SrbTransLatin plugin to a version that patches the vulnerability.
More information about CVE-2018-5368 can be found at the following references: [GitHub](https://github.com/d4wner/Vulnerabilities-Report/blob/master/SrbTransLatin.md) and [WPScan Vulnerability Database](https://wpvulndb.com/vulnerabilities/9004).