Does MotaWord Translation have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is MotaWord Translation compatible with WordPress 6.7.5?

According to WordPress.org data, MotaWord Translation 2.0.4 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is MotaWord Translation updated?

MotaWord Translation was last updated on Mar 25, 2025. Frequent updates are generally a positive security signal.

What is MotaWord Translation's security score?

MotaWord Translation has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

MotaWord Translation Security & Risk Analysis

wordpress.org/plugins/motaword

MotaWord translates and localizes your WordPress site into 95+ languages fast and economically using professional translators.

10 active installs v2.0.4 PHP + WP 3.0.1+ Updated Mar 25, 2025

internationalizationlocalizationmultilingualtranslatetranslation

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is MotaWord Translation Safe to Use in 2026?

Generally Safe

Score 92/100

MotaWord Translation has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "motaword" plugin v2.0.4 presents a concerning security posture primarily due to its significant attack surface with unprotected AJAX handlers. The static analysis revealed four AJAX handlers, all of which lack authentication checks, creating an immediate vulnerability. This means any unauthenticated user could potentially trigger these functions, leading to unintended actions or data exposure. Furthermore, the low percentage of properly escaped output (18%) suggests a high likelihood of cross-site scripting (XSS) vulnerabilities within the plugin's code. While the plugin has no recorded vulnerability history and no dangerous functions are identified, the lack of basic security measures like nonce checks on AJAX handlers and proper output escaping are fundamental security oversights. The taint analysis, although showing no critical or high severity flows, did identify five flows with unsanitized paths, which, when combined with the unprotected AJAX endpoints, warrants significant caution.

Key Concerns

Unprotected AJAX handlers
Low percentage of properly escaped output
Flows with unsanitized paths
No nonce checks on AJAX

Vulnerabilities

None known

MotaWord Translation Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

MotaWord Translation Release Timeline

v2.0.4Current

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.3.9

v1.3.8

v1.3.7

v1.3.6

v1.3.5

v1.3.4

v1.3.3

v1.3.2

v1.3.1

v1.3.0

v1.2.0

v1.1.8

v1.1.7

v1.1.6

v1.1.5

Code Analysis

Analyzed Apr 16, 2026

MotaWord Translation Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

13 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

33% prepared3 total queries

Output Escaping

18% escaped72 total outputs

Data Flows · Security

5 unsanitized

Data Flow Analysis

6 flows5 with unsanitized paths

show_side_box (admin/class-motaword-admin.php:182)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

MotaWord Translation Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_mw_get_quoteincludes/class-motaword.php:237

authwp_ajax_mw_prepare_bulk_quoteincludes/class-motaword.php:238

authwp_ajax_mw_get_bulk_quoteincludes/class-motaword.php:239

authwp_ajax_mw_submit_quoteincludes/class-motaword.php:240

WordPress Hooks 44

actionwp_headincludes/class-motaword-active.php:221

actionwp_headincludes/class-motaword-active.php:226

actionplugins_loadedincludes/class-motaword.php:202

actionadmin_enqueue_scriptsincludes/class-motaword.php:217

actionadmin_enqueue_scriptsincludes/class-motaword.php:218

actionadd_meta_boxesincludes/class-motaword.php:221

actionadmin_menuincludes/class-motaword.php:222

actionnetwork_admin_menuincludes/class-motaword.php:225

actionadmin_initincludes/class-motaword.php:229

actionload-edit.phpincludes/class-motaword.php:233

actionadmin_footer-edit.phpincludes/class-motaword.php:234

actionadmin_action_mw_callbackincludes/class-motaword.php:241

filtermanage_posts_columnsincludes/class-motaword.php:243

actionmanage_posts_custom_columnincludes/class-motaword.php:244

filtermanage_pages_columnsincludes/class-motaword.php:246

actionmanage_pages_custom_columnincludes/class-motaword.php:247

actioninitincludes/class-motaword.php:263

actiontemplate_redirectincludes/class-motaword.php:264

filterwp_get_nav_menu_itemsincludes/class-motaword.php:270

filternav_menu_link_attributesincludes/class-motaword.php:271

actioninitincludes/class-motaword.php:272

actionpost_updatedincludes/class-motaword.php:273

actionwp_trash_postincludes/class-motaword.php:274

actiondelete_postincludes/class-motaword.php:275

actionwp_update_comment_countincludes/class-motaword.php:277

actionadmin_post_purge_cacheincludes/class-motaword.php:278

actionswitch_themeincludes/class-motaword.php:279

actionwp_update_nav_menuincludes/class-motaword.php:280

actionupdate_option_sidebars_widgetsincludes/class-motaword.php:281

actionupdate_option_category_baseincludes/class-motaword.php:282

actionupdate_option_tag_baseincludes/class-motaword.php:283

actionpermalink_structure_changedincludes/class-motaword.php:284

actioncreate_termincludes/class-motaword.php:285

actionedited_termsincludes/class-motaword.php:286

actiondelete_termincludes/class-motaword.php:287

actionadd_linkincludes/class-motaword.php:288

actionedit_linkincludes/class-motaword.php:289

actiondelete_linkincludes/class-motaword.php:290

actioncustomize_saveincludes/class-motaword.php:291

actioninitincludes/class-motaword.php:298

actioninitincludes/class-motaword.php:299

actioninitincludes/class-motaword.php:300

actiontemplate_redirectincludes/class-motaword.php:301

actionactivated_pluginmotaword.php:57

Maintenance & Trust

MotaWord Translation Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedMar 25, 2025

PHP min version

Downloads6K

Community Trust

Rating100/100

Number of ratings2

Active installs10

Alternatives

MotaWord Translation Alternatives

Polylang

polylang

Go multilingual in a simple and efficient way. Keep writing posts and taxonomy terms as usual while defining their languages all at once.

800K 3 CVEs

WP Multilang – Translation and Multilingual Plugin

wp-multilang

Multilingual plugin for WordPress. Go Multilingual in minutes with full WordPress support. Translate your site easily with this localization plugin.

10K 1 CVE

wpLingua – Automatic translation – Translate and make website multilingual

wplingua

100

Make your websites multilingual and translate them automatically: no word limits, editable translations, SEO-friendly, no coding knowledge needed

2K No CVEs

Falang multilanguage for WordPress

falang

Falang is the easiest multilanguage plugin you can use to translate a WordPress site.

1K 8 CVEs

WEB-T – eTranslation Multilingual

etranslation-multilingual

100

Make your site multilingual in few steps with WEB-T – eTranslation Multilingual WordPress plugin.

400 No CVEs

Developer Profile

MotaWord Translation Developer Profile

motaword

1 plugin · 10 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect MotaWord Translation

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/motaword/admin/css/motaword-admin.css/wp-content/plugins/motaword/admin/js/motaword-admin.js/wp-content/plugins/motaword/js/motaword.js/wp-content/plugins/motaword/css/motaword.css

Script Paths

/wp-content/plugins/motaword/admin/js/motaword-admin.js/wp-content/plugins/motaword/js/motaword.js

Version Parameters

motaword-admin.css?ver=motaword-admin.js?ver=motaword.js?ver=motaword.css?ver=

HTML / DOM Fingerprints

CSS Classes

mw-error-modalmw-plugin-link

HTML Comments

+1 more

Data Attributes

data-mw-langdata-mw-post-id

JS Globals

motaword_ajax_object

FAQ