← Back to CVE List

CVE-2015-9431

Published: 2019-09-26T02:15Z
Last Modified: 2024-11-21T02:40Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The qtranslate-x plugin before 3.4.4 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=qtranslate-x json_config_files or json_custom_i18n_config parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt