Does Translatio have any unpatched vulnerabilities?

No. All known vulnerabilities in Translatio have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Translatio compatible with WordPress 6.4.8?

According to WordPress.org data, Translatio 2.3.0 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

Is Translatio compatible with PHP 7.0+?

Translatio requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Translatio updated?

Translatio was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Translatio's security score?

Translatio has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Translatio Security & Risk Analysis

wordpress.org/plugins/tmy-globalization

Make your website multilingual ready at ease with live translation or with support of full translation cycle, with machine translation integration.

0 active installs v2.3.0 PHP 7.0+ WP 5.0+ Updated Unknown

languagelocalizationmultilingualtranslationwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Translatio Safe to Use in 2026?

Generally Safe

Score 100/100

Translatio has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The tmy-globalization plugin version 2.3.0 exhibits a concerning security posture due to a significant number of unprotected AJAX handlers. While the plugin demonstrates good practices in output escaping and a reasonable percentage of prepared SQL statements, the lack of authentication checks on all its AJAX entry points creates a broad attack surface. This suggests a potential for unauthorized actions or data manipulation if these handlers can be triggered by unauthenticated users.

The taint analysis reveals two high-severity flows with unsanitized paths. This is a critical concern as it indicates potential vulnerabilities where user-supplied input could be processed in an unsafe manner, potentially leading to code execution or other severe impacts. The absence of any recorded vulnerability history might suggest a lack of past exploitation or disclosure, but it does not negate the risks identified in the static analysis.

In conclusion, the plugin has strengths in areas like output escaping and SQL preparation. However, the substantial number of unprotected AJAX handlers and the presence of high-severity taint flows are significant weaknesses that warrant immediate attention. The lack of known CVEs is positive, but the identified code signals demand remediation to ensure a robust security posture.

Key Concerns

Unprotected AJAX handlers present
High severity taint flows with unsanitized paths
Dangerous function 'unserialize' used
Some SQL queries not using prepared statements
File operations without clear context

Vulnerabilities

None known

Translatio Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Translatio Code Analysis

Dangerous Functions

Raw SQL Queries

27 prepared

Unescaped Output

497 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$meta_value_var=unserialize($row["meta_value"]);admin\include\class-tmy-g11n-table.php:247

SQL Query Safety

71% prepared38 total queries

Output Escaping

89% escaped560 total outputs

Data Flows

5 unsanitized

Data Flow Analysis

9 flows5 with unsanitized paths

tmy_get_post_translation_status (admin\class-tmy-g11n-admin.php:1999)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

10 unprotected

Translatio Attack Surface

Entry Points10

Unprotected10

AJAX Handlers 10

authwp_ajax_tmy_create_server_projectincludes\class-tmy-g11n.php:168

authwp_ajax_tmy_create_clear_plugin_dataincludes\class-tmy-g11n.php:169

authwp_ajax_tmy_get_project_statusincludes\class-tmy-g11n.php:170

authwp_ajax_tmy_get_local_translation_statusincludes\class-tmy-g11n.php:171

authwp_ajax_tmy_create_sync_translationincludes\class-tmy-g11n.php:172

authwp_ajax_tmy_get_post_translation_statusincludes\class-tmy-g11n.php:173

authwp_ajax_tmy_admin_save_changesincludes\class-tmy-g11n.php:174

authwp_ajax_tmy_g11n_admin_slugs_opsincludes\class-tmy-g11n.php:175

authwp_ajax_tmy_g11n_frontend_jquery_callincludes\class-tmy-g11n.php:283

noprivwp_ajax_tmy_g11n_frontend_jquery_callincludes\class-tmy-g11n.php:284

WordPress Hooks 102

actionwidgets_initincludes\class-tmy-g11n-widget.php:53

actionplugins_loadedincludes\class-tmy-g11n.php:147

actionadmin_enqueue_scriptsincludes\class-tmy-g11n.php:162

actionadmin_enqueue_scriptsincludes\class-tmy-g11n.php:163

actionadmin_initincludes\class-tmy-g11n.php:165

actionadmin_menuincludes\class-tmy-g11n.php:166

filterrewrite_rules_arrayincludes\class-tmy-g11n.php:177

filterviews_edit-postincludes\class-tmy-g11n.php:179

filterpre_update_optionincludes\class-tmy-g11n.php:180

filtermanage_g11n_translation_posts_columnsincludes\class-tmy-g11n.php:192

filtermanage_edit-g11n_translation_sortable_columnsincludes\class-tmy-g11n.php:193

actionmanage_g11n_translation_posts_custom_columnincludes\class-tmy-g11n.php:194

filtermanage_pages_columnsincludes\class-tmy-g11n.php:198

actionmanage_pages_custom_columnincludes\class-tmy-g11n.php:199

filtermanage_posts_columnsincludes\class-tmy-g11n.php:201

actionmanage_posts_custom_columnincludes\class-tmy-g11n.php:202

actionpre_get_postsincludes\class-tmy-g11n.php:205

actionadmin_noticesincludes\class-tmy-g11n.php:213

actionadmin_headincludes\class-tmy-g11n.php:214

actionsave_postincludes\class-tmy-g11n.php:216

actionadmin_head-nav-menus.phpincludes\class-tmy-g11n.php:218

actioncategory_edit_formincludes\class-tmy-g11n.php:220

actionpost_tag_edit_formincludes\class-tmy-g11n.php:221

actionproduct_cat_edit_formincludes\class-tmy-g11n.php:222

actionproduct_tag_edit_formincludes\class-tmy-g11n.php:223

actionwoocommerce_before_resend_order_emailsincludes\class-tmy-g11n.php:225

actionwoocommerce_new_customer_note_notificationincludes\class-tmy-g11n.php:229

actionwoocommerce_order_status_processing_to_cancelled_notificationincludes\class-tmy-g11n.php:231

actionwoocommerce_order_status_on-hold_to_cancelled_notificationincludes\class-tmy-g11n.php:232

actionwoocommerce_order_status_completed_notificationincludes\class-tmy-g11n.php:233

actionwoocommerce_order_status_on-hold_to_processing_notificationincludes\class-tmy-g11n.php:234

actionwoocommerce_order_fully_refunded_notificationincludes\class-tmy-g11n.php:235

actionwoocommerce_order_partially_refunded_notificationincludes\class-tmy-g11n.php:236

actionwoocommerce_order_status_on-hold_to_failed_notificationincludes\class-tmy-g11n.php:237

actionwoocommerce_order_status_pending_to_failed_notificationincludes\class-tmy-g11n.php:238

actionwoocommerce_order_status_pending_to_completed_notificationincludes\class-tmy-g11n.php:240

actionwoocommerce_order_status_pending_to_on-hold_notificationincludes\class-tmy-g11n.php:241

actionwoocommerce_order_status_pending_to_processing_notificationincludes\class-tmy-g11n.php:242

actionwoocommerce_order_status_failed_to_on-hold_notificationincludes\class-tmy-g11n.php:243

actionwoocommerce_order_status_failed_to_processing_notificationincludes\class-tmy-g11n.php:244

actionwoocommerce_order_status_failed_to_completed_notificationincludes\class-tmy-g11n.php:245

actionwoocommerce_order_status_cancelled_to_on-hold_notificationincludes\class-tmy-g11n.php:246

actionwoocommerce_order_status_cancelled_to_processing_notificationincludes\class-tmy-g11n.php:247

actionwoocommerce_order_status_cancelled_to_completed_notificationincludes\class-tmy-g11n.php:248

actionwp_enqueue_scriptsincludes\class-tmy-g11n.php:265

actionwp_enqueue_scriptsincludes\class-tmy-g11n.php:266

actionwp_loginincludes\class-tmy-g11n.php:270

actionwp_logoutincludes\class-tmy-g11n.php:271

actioninitincludes\class-tmy-g11n.php:280

filterpost_type_linkincludes\class-tmy-g11n.php:288

filterpost_linkincludes\class-tmy-g11n.php:289

filterpage_linkincludes\class-tmy-g11n.php:290

filteryear_linkincludes\class-tmy-g11n.php:292

filtermonth_linkincludes\class-tmy-g11n.php:293

filterday_linkincludes\class-tmy-g11n.php:294

filtertag_linkincludes\class-tmy-g11n.php:296

filtercategory_linkincludes\class-tmy-g11n.php:297

filtersearch_linkincludes\class-tmy-g11n.php:298

filterterm_linkincludes\class-tmy-g11n.php:300

actionwp_headincludes\class-tmy-g11n.php:301

actionget_sidebarincludes\class-tmy-g11n.php:306

actiondynamic_sidebarincludes\class-tmy-g11n.php:308

actionedit_form_after_titleincludes\class-tmy-g11n.php:310

actionwp_footerincludes\class-tmy-g11n.php:313

filterpre_get_document_titleincludes\class-tmy-g11n.php:315

filterbloginfoincludes\class-tmy-g11n.php:317

filterthe_titleincludes\class-tmy-g11n.php:318

filterthe_contentincludes\class-tmy-g11n.php:319

filterthe_postsincludes\class-tmy-g11n.php:322

filterwpml_object_idincludes\class-tmy-g11n.php:324

filterfusion_layout_section_idincludes\class-tmy-g11n.php:325

filteravada_menu_metaincludes\class-tmy-g11n.php:326

filterfusion_shortcode_contentincludes\class-tmy-g11n.php:327

filterfusion_builder_default_argsincludes\class-tmy-g11n.php:328

filterpre_option_blognameincludes\class-tmy-g11n.php:330

filterpre_option_blogdescriptionincludes\class-tmy-g11n.php:331

filterpre_update_option_blognameincludes\class-tmy-g11n.php:333

filterpre_update_option_blogdescriptionincludes\class-tmy-g11n.php:334

filterlocaleincludes\class-tmy-g11n.php:336

filterquery_varsincludes\class-tmy-g11n.php:339

filteruse_block_editor_for_postincludes\class-tmy-g11n.php:342

actioninitincludes\class-tmy-g11n.php:345

filterfusion_faq_all_filter_nameincludes\class-tmy-g11n.php:350

filteroption_widget_blockincludes\class-tmy-g11n.php:366

filteroption_woocommerce_cheque_settingsincludes\class-tmy-g11n.php:368

filteroption_woocommerce_cod_settingsincludes\class-tmy-g11n.php:369

filterwoocommerce_cart_item_nameincludes\class-tmy-g11n.php:370

filterwoocommerce_order_item_nameincludes\class-tmy-g11n.php:371

filterwoocommerce_attribute_labelincludes\class-tmy-g11n.php:372

actionwoocommerce_new_orderincludes\class-tmy-g11n.php:374

filternav_menu_item_titleincludes\class-tmy-g11n.php:375

filternav_menu_item_filterincludes\class-tmy-g11n.php:378

filterwp_nav_menu_itemsincludes\class-tmy-g11n.php:379

filterwp_nav_menu_objectsincludes\class-tmy-g11n.php:380

filterwpseo_metadescincludes\class-tmy-g11n.php:385

filterpre_option_blogdescriptionpublic\class-tmy-g11n-public.php:767

filterbloginfopublic\class-tmy-g11n-public.php:811

filterpre_option_blognamepublic\class-tmy-g11n-public.php:812

filterbloginfopublic\class-tmy-g11n-public.php:1417

filterpre_option_blogdescriptionpublic\class-tmy-g11n-public.php:1418

filterbloginfopublic\class-tmy-g11n-public.php:1454

filterpre_option_blognamepublic\class-tmy-g11n-public.php:1455

Maintenance & Trust

Translatio Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedUnknown

PHP min version7.0

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Translatio Alternatives

Polylang

polylang

Go multilingual in a simple and efficient way. Keep writing posts and taxonomy terms as usual while defining their languages all at once.

800K 3 CVEs

WP Multilang – Translation and Multilingual Plugin

wp-multilang

Multilingual plugin for WordPress. Go Multilingual in minutes with full WordPress support. Translate your site easily with this localization plugin.

10K 1 CVE

wpLingua – Automatic translation – Translate and make website multilingual

wplingua

100

Make your websites multilingual and translate them automatically: no word limits, editable translations, SEO-friendly, no coding knowledge needed

2K No CVEs

Smartcat Translator for WPML

smartcat-wpml

The easiest way to translate your WPML-enabled WordPress site into various languages.

60 1 CVE

ICanLocalize Translator

icanlocalize-translator

Allows running multilingual WordPress sites with zero management. Automatically creates and updates translation when you edit.

10 No CVEs

Developer Profile

Translatio Developer Profile

yushao

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Translatio

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tmy-globalization/css/tmy-g11n-admin-slugs-page.css/wp-content/plugins/tmy-globalization/css/tmy-g11n-admin.css/wp-content/plugins/tmy-globalization/js/tmy-g11n-admin-slugs-page.js/wp-content/plugins/tmy-globalization/js/tmy-g11n-admin.js

Version Parameters

tmy-g11n-admin-slugs-page.css?ver=tmy-g11n-admin.css?ver=tmy-g11n-admin-slugs-page.js?ver=tmy-g11n-admin.js?ver=

HTML / DOM Fingerprints

FAQ