WordPress Plugin Loco Translate PHP Code Injection - CVE-2021-24721 - Vulnerability Database

WordPress Plugin Loco Translate PHP Code Injection - CVE-2021-24721

Critical
Reference: CVE-2021-24721
Title: WordPress Plugin Loco Translate PHP Code Injection
Overview:

WordPress Plugin Loco Translate is prone to a vulnerability that lets attackers inject and execute arbitrary code because the application fails to sanitize user-supplied input. Attackers can exploit this issue to execute arbitrary PHP code within the context of the affected webserver process. WordPress Plugin Loco Translate version 2.5.3 is vulnerable prior versions may also be affected.