[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fj5ULmWa7zQNw_OGNXOPpXNyg8ExmmWLq4uVA04Wee_c":3,"$faG-pR0oAsYH3zvAeaCFVPX4Zp8f4EXGRWNCcVftHe18":337,"$fqBZn5SCDvoGy0eCtmGLX8cMctA7Mq5uPaO-9VSf6z4w":341},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":76,"crawl_stats":36,"alternatives":83,"analysis":183,"fingerprints":309},"wpdeepl","Translation with DeepL API","2.6.1","malaiac","https:\u002F\u002Fprofiles.wordpress.org\u002Fmalaiac\u002F","\u003Cp>This plugin allows you to use DeepL translation API to translate posts (and pages) right from your WordPress Admin.\u003C\u002Fp>\n\u003Cp>Adds a translate button to the edit post page.\u003Cbr \u002F>\nShows current and remaining API usage.\u003C\u002Fp>\n\u003Cp>This plugin requires an active DeepL API subscription with access to the API.\u003Cbr \u002F>\nPlease note that DeepL User or Teams plans do NOT include API access.\u003Cbr \u002F>\nYou have to get a \u003Ca href=\"https:\u002F\u002Fwww.deepl.com\u002Ffr\u002Fpro\u002Fchange-plan#developer\" rel=\"nofollow ugc\">“DeepL Developer” plan\u003C\u002Fa> (both ‘DeepL API Free’ and ‘DeepL API Pro’ work with this plugin)\u003C\u002Fp>\n\u003Cp>Want to translate Products, meta fields, or translate in batches?\u003Cbr \u002F>\nGet the \u003Ca href=\"https:\u002F\u002Fsolutions.fluenx.com\u002Fen\u002Fproduit\u002Fbatch-deepl-translation-for-wordpress-posts\u002F\" rel=\"nofollow ugc\">DeepL Pro API plugin\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Please note: the free and the premium version works the same relative to content editors (Elementor, Blocks, etc.). You’re free to test this plugin on your website to see if your specific configuration works well with the plugin. We cannot guarantee that all content editors work perfectly with the DeepL API so please test this plugin before buying the premium (you’ll need the premium only if you need extended features like meta translations and batch translations)\u003C\u002Fp>\n\u003Ch3>Legal\u003C\u002Fh3>\n\u003Cp>This plugin is an independent tool developed by Fluenx and is not affiliated with, endorsed by, or sponsored by DeepL SE.\u003C\u002Fp>\n\u003Cp>DeepL® is a registered trademark of DeepL SE. All trademarks are property of their respective owners.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the DeepL API to provide machine translation services for your WordPress content.\u003C\u002Fp>\n\u003Ch4>What data is sent\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>The text content you choose to translate (post title, excerpt, and\u002For content)\u003C\u002Fli>\n\u003Cli>Your DeepL API key for authentication\u003C\u002Fli>\n\u003Cli>The source and target language codes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>When data is sent\u003C\u002Fh4>\n\u003Cp>Data is only sent when you explicitly click the “Translate” button in the post editor metabox. No automatic or background translations occur.\u003C\u002Fp>\n\u003Ch4>Service provider\u003C\u002Fh4>\n\u003Cp>This service is provided by DeepL SE.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.deepl.com\u002Fen\u002Fpro-license\" rel=\"nofollow ugc\">DeepL Terms and Conditions\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.deepl.com\u002Fen\u002Fprivacy\" rel=\"nofollow ugc\">DeepL Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdevelopers.deepl.com\u002Fdocs\" rel=\"nofollow ugc\">DeepL API Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note: This plugin requires a DeepL API subscription. The free “DeepL API Free” plan or paid “DeepL API Pro” plan both work. Standard DeepL User or Teams plans do NOT include API access.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin relies on the DeepL API to provide text translation services.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Service used\u003C\u002Fstrong>: DeepL API (provided by DeepL SE).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Purpose\u003C\u002Fstrong>: To translate WordPress content (posts, pages, strings) into different languages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data sent\u003C\u002Fstrong>: The text content requested for translation and the user’s API Authentication Key are sent to DeepL servers via secure HTTPS requests.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Links\u003C\u002Fstrong>:\n\u003Cul>\n\u003Cli>DeepL Terms and Conditions: https:\u002F\u002Fwww.deepl.com\u002Fen\u002Fterms\u002F\u003C\u002Fli>\n\u003Cli>DeepL Privacy Policy: https:\u002F\u002Fwww.deepl.com\u002Fen\u002Fprivacy\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Trademark Disclaimer\u003C\u002Fstrong>: This plugin is an independent integration and is not affiliated with, sponsored by, or endorsed by DeepL SE. The name “DeepL” is a trademark of DeepL SE.\u003C\u002Fp>\n","Get DeepL translation magic into your WordPress Admin. Not affiliated with or endorsed by DeepL SE. DeepL® is a registered trademark of DeepL SE.",4000,151003,80,29,"2026-03-04T12:47:00.000Z","6.9.4","5.1","8.0",[20,21],"post","translation","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.zip",99,3,0,"2023-10-25 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[31,49,61],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":27,"updated_date":43,"references":44,"days_to_patch":46,"patch_diff_files":47,"patch_trac_url":36,"research_status":36,"research_verified":48,"research_rounds_completed":26,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":48,"poc_model_used":36,"poc_verification_depth":36},"CVE-2023-46620","deepl-pro-api-translation-cross-site-request-forgery-via-wpdeeplprunelogs","DeepL Pro API translation \u003C= 2.4.1.1 - Cross-Site Request Forgery via wpdeepl_prune_logs","The DeepL Pro API translation plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.4.1.1. This is due to missing or incorrect nonce validation on the wpdeepl_prune_logs function. This makes it possible for unauthenticated attackers to trigger the log pruning feature via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=2.4.1.1","2.4.1.2","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2024-01-22 19:56:02",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fb60cb1af-c9f3-4cea-9699-d66a52eb87eb?source=api-prod",90,[],false,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":36,"affected_versions":54,"patched_in_version":55,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":56,"updated_date":43,"references":57,"days_to_patch":59,"patch_diff_files":60,"patch_trac_url":36,"research_status":36,"research_verified":48,"research_rounds_completed":26,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":48,"poc_model_used":36,"poc_verification_depth":36},"CVE-2023-27446","deepl-pro-api-translation-cross-site-request-forgery-via-savesettings","DeepL Pro API translation \u003C= 2.1.4 - Cross-Site Request Forgery via saveSettings","The DeepL Pro API translation plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1.4. This is due to missing or incorrect nonce validation on the 'saveSettings' function. This makes it possible for unauthenticated attackers to change plugin settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C=2.1.4","2.1.5","2023-03-02 00:00:00",[58],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1fc58078-7520-4ee7-b5a1-d6a362ac1860?source=api-prod",327,[],{"id":62,"url_slug":63,"title":64,"description":65,"plugin_slug":4,"theme_slug":36,"affected_versions":66,"patched_in_version":67,"severity":39,"cvss_score":68,"cvss_vector":69,"vuln_type":70,"published_date":71,"updated_date":43,"references":72,"days_to_patch":74,"patch_diff_files":75,"patch_trac_url":36,"research_status":36,"research_verified":48,"research_rounds_completed":26,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":48,"poc_model_used":36,"poc_verification_depth":36},"CVE-2022-3691","deepl-pro-api-translation-sensitive-information-disclosure","DeepL Pro API Translation \u003C= 1.7.4 - Sensitive Information Disclosure","The DeepL Pro API Translation plugin for WordPress is vulnerable to Sensitive Data Exposure in versions up to, and including, 1.7.4. This could allow unauthenticated attackers to extract sensitive user or configuration data such as API keys.","\u003C=1.7.4","1.7.5",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2022-10-31 00:00:00",[73],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F06f3c08a-9791-4c66-a173-8bbbb38d05ab?source=api-prod",449,[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":77,"total_installs":78,"avg_security_score":79,"avg_patch_time_days":80,"trust_score":81,"computed_at":82},2,4050,92,289,73,"2026-07-15T10:15:26.499Z",[84,105,126,145,162],{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":26,"num_ratings":26,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":97,"tags":98,"homepage":22,"download_link":103,"security_score":104,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"auto-translator-polylang","Auto Translator for Polylang","1.2.1","UAPP","https:\u002F\u002Fprofiles.wordpress.org\u002Fuapp\u002F","\u003Cp>Auto Translator for Polylang lets you translate your posts, categories, tags, pages etc. in one click.\u003Cbr \u002F>\nPlugin has many features to suit your needs. Automatic translate with Polylang integration.\u003Cbr \u002F>\nAuto Translator for Polylang relies on \u003Ca href=\"https:\u002F\u002Fcloud.google.com\u002Ftranslate\u002Fdocs\u002Freference\u002Fapi-overview\" rel=\"nofollow ugc\">Google Translate API\u003C\u002Fa> to translate your posts\u002Fpages and theirs content\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Fterms\" rel=\"nofollow ugc\">Google APIs Terms of Service\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Fterms\u002Fapi-services-user-data-policy\" rel=\"nofollow ugc\">Google API Services User Data Policy\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fcloud.google.com\u002Ftranslate\u002Fdocs\u002Fsetup\" rel=\"nofollow ugc\">Google Translate API docs\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>COMMON FEATURES\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Translate posts, pages, custom post types, taxonomies in one click\u003C\u002Fli>\n\u003Cli>Polylang integration\u003C\u002Fli>\n\u003Cli>Yoast and Advanced Custom Fields translation\u003C\u002Fli>\n\u003Cli>Bulk translation to language you choose\u003C\u002Fli>\n\u003Cli>Translate post, page or custom post type right from edit page\u003C\u002Fli>\n\u003Cli>Translate all your tags and categories on one click\u003C\u002Fli>\n\u003Cli>Review your translated entities from Translated entities page\u003C\u002Fli>\n\u003Cli>Mark as reviewed everything you already reviewed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>REASONS FOR CHOOSING AUTO TRANSLATOR FOR POLYLANG\u003C\u002Fh3>\n\u003Cp>An easy to use interface with essential features. Translate all your website content in several clicks\u003C\u002Fp>\n\u003Ch3>EXPERT SUPPORT\u003C\u002Fh3>\n\u003Cp>We have an extraordinary support team ready to help you. You can ask your questions in the support forum\u003C\u002Fp>\n","Auto Translator for Polylang translates posts, categories, tags, and pages with one click.",50,2851,"2025-12-02T15:06:00.000Z","6.8.5","5.8","7.4",[99,100,101,102,21],"custom-post-type-translation","polylang","post-translation","terms-translation","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-translator-polylang.1.2.1.zip",100,{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":115,"num_ratings":25,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":22,"tags":119,"homepage":122,"download_link":123,"security_score":124,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":125},"translation-detector","Translation Detector","1.3.5","Guillaume DIARD","https:\u002F\u002Fprofiles.wordpress.org\u002Fguillaumediard\u002F","\u003Cp>This plugin allow you to display a simple link to navigate between a single post translations.\u003C\u002Fp>\n\u003Ch4>How does it work?\u003C\u002Fh4>\n\u003Cp>Translation detector check for each post if any translation exists, if it’s the case a button is display in the post to navigate between each translation.\u003C\u002Fp>\n\u003Cp>If there is only 2 languages available the plugin will display a button but if there is more than 2 languages, it will display multiple links.\u003C\u002Fp>\n\u003Ch4>Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Become a translator and send me your translation! \u003Ca href=\"http:\u002F\u002Fguillaume-diard.fr\u002Fcontact\" title=\"Contact\" rel=\"nofollow ugc\">Contact-me\u003C\u002Fa>\u003C\u002Fp>\n","Translation detector display a simple button to navigate to a post translation created with polylang.",20,4102,74,"2016-04-11T18:54:00.000Z","4.5.33","3.7",[120,121,100,20,21],"detector","language","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftranslation-detector\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftranslation-detector.1.3.5.zip",85,"2026-04-06T09:54:40.288Z",{"slug":127,"name":128,"version":129,"author":130,"author_profile":131,"description":132,"short_description":133,"active_installs":134,"downloaded":135,"rating":26,"num_ratings":26,"last_updated":136,"tested_up_to":137,"requires_at_least":138,"requires_php":22,"tags":139,"homepage":143,"download_link":144,"security_score":124,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":125},"english-words-translator-by-vocabla","Translate English Words by Vocabla","1.0","Vocabla","https:\u002F\u002Fprofiles.wordpress.org\u002Fvocabla\u002F","\u003Cp>It lets your international visitors translate English words using double click.\u003Cbr \u002F>\n8 languages are covered: Spanish, Portuguese, Chinese, Arabic, Russian, Turkish, Vietnamese, Polish.\u003Cbr \u002F>\nOther users get English definition.\u003C\u002Fp>\n\u003Cp>After installation no additional setup is required. It just works:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Box with one line instruction for users is presented below every post title:\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>“New English word? Translate any word using double click.”\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>When user double-clicks on an English word in your article, he gets word translation in his browser’s language or an English definition.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>That’s all! More international visitors can understand articles from your website 🙂\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Loading JS from http:\u002F\u002Fvocabla.com\u003C\u002Fh3>\n\u003Cp>To provide the best service of translation, we need to communicate with Vocabla servers where we keep the translation data and audio for the translated words.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","It lets your international visitors translate English words using double click.",10,1821,"2013-12-09T11:30:00.000Z","3.4.2","3.0.1",[140,141,20,142,21],"content","dictionary","translate","http:\u002F\u002Fvocabla.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenglish-words-translator-by-vocabla.1.0.zip",{"slug":146,"name":147,"version":148,"author":149,"author_profile":150,"description":151,"short_description":152,"active_installs":26,"downloaded":153,"rating":26,"num_ratings":26,"last_updated":154,"tested_up_to":155,"requires_at_least":156,"requires_php":22,"tags":157,"homepage":22,"download_link":161,"security_score":124,"vuln_count":26,"unpatched_count":26,"last_vuln_date":36,"fetched_at":28},"annotation-by-country","Annotation By Country","0.2.0","pandanote","https:\u002F\u002Fprofiles.wordpress.org\u002Fpandanote\u002F","\u003Cp>This plugin will select annotations depending on the access source of the country. With this plugin, annotations can be written in a post directly by surrounding them with the specific shortcode tag. GeoIP2 or GeoLite2, and GeoLite2-php are required to be installed because this plugin works with them.\u003C\u002Fp>\n","This plugin will select annotations depending on the access source of the country. With this plugin, annotations can be written in a post directly by  &hellip;",1263,"2021-10-23T05:44:00.000Z","5.7.15","3.8",[158,159,160,21],"annotation","plugins","posts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fannotation-by-country.zip",{"slug":163,"name":164,"version":165,"author":166,"author_profile":167,"description":168,"short_description":169,"active_installs":170,"downloaded":171,"rating":172,"num_ratings":173,"last_updated":174,"tested_up_to":16,"requires_at_least":175,"requires_php":97,"tags":176,"homepage":179,"download_link":180,"security_score":46,"vuln_count":181,"unpatched_count":26,"last_vuln_date":182,"fetched_at":28},"duplicate-post","Yoast Duplicate Post","4.6","Yoast","https:\u002F\u002Fprofiles.wordpress.org\u002Fyoast\u002F","\u003Cp>This plugin allows users to clone posts of any type, or copy them to new drafts for further editing.\u003C\u002Fp>\n\u003Cp>How it works:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>In ‘Edit Posts’\u002F’Edit Pages’, you can click on ‘Clone’ link below the post\u002Fpage title: this will immediately create a copy and return to the list.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>In ‘Edit Posts’\u002F’Edit Pages’, you can select one or more items, then choose ‘Clone’ in the ‘Bulk Actions’ dropdown to copy them all at once.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>In ‘Edit Posts’\u002F’Edit Pages’, you can click on ‘New Draft’ link below the post\u002Fpage title.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>On the post edit screen, you can click on ‘Copy to a new draft’ above “Cancel”\u002F”Move to trash” or in the admin bar.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>While viewing a post as a logged in user, you can click on ‘Copy to a new draft’ in the admin bar.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>3, 4 and 5 will lead to the edit page for the new draft: change what you want, click on ‘Publish’ and you’re done.\u003C\u002Fp>\n\u003Cp>There is also a \u003Cstrong>template tag\u003C\u002Fstrong>, so you can put it in your templates and clone your posts\u002Fpages from the front-end. Clicking on the link will lead you to the edit page for the new draft, just like the admin bar link.\u003C\u002Fp>\n\u003Cp>Duplicate Post has many useful settings to customize its behavior and restrict its use to certain roles or post types. Check out the extensive documentation on \u003Ca href=\"https:\u002F\u002Fyoast.com\u002Fwordpress\u002Fplugins\u002Fduplicate-post\u002F\" rel=\"nofollow ugc\">yoast.com\u003C\u002Fa> and our \u003Ca href=\"https:\u002F\u002Fdeveloper.yoast.com\u002Fduplicate-post\u002Foverview\u002F\" rel=\"nofollow ugc\">developer docs\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cp>If you find this useful and if you want to contribute, there are two ways:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Submit your bug reports, suggestions and requests for features on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FYoast\u002Fduplicate-post\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>;\u003C\u002Fli>\n\u003Cli>If you want to translate it to your language (there are just a few lines of text), you can use the \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fduplicate-post\" rel=\"nofollow ugc\">translation project\u003C\u002Fa>;\u003C\u002Fli>\n\u003C\u002Fol>\n","The go-to tool for cloning posts and pages, including the powerful Rewrite & Republish feature.",4000000,38996013,94,529,"2026-03-09T10:34:00.000Z","6.8",[177,178,163],"clone","copy","https:\u002F\u002Fyoast.com\u002Fwordpress\u002Fplugins\u002Fduplicate-post\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fduplicate-post.4.6.zip",4,"2026-03-17 20:54:49",{"attackSurface":184,"codeSignals":245,"taintFlows":280,"riskAssessment":300,"analyzedAt":308},{"hooks":185,"ajaxHandlers":241,"restRoutes":242,"shortcodes":243,"cronEvents":244,"entryPointCount":26,"unprotectedCount":26},[186,192,196,200,205,209,212,216,220,223,227,230,233,238],{"type":187,"name":188,"callback":189,"priority":190,"file":191,"line":25},"action","init","deepl_init_admin",40,"admin\\deepl-admin-hooks.php",{"type":187,"name":193,"callback":194,"file":191,"line":195},"admin_enqueue_scripts","deepl_load_admin_javascript",23,{"type":187,"name":197,"callback":198,"file":191,"line":199},"admin_footer","deepl_admin_footer",42,{"type":187,"name":201,"callback":202,"file":203,"line":204},"add_meta_boxes","add_meta_box","admin\\deepl-metabox.php",8,{"type":187,"name":206,"callback":207,"file":208,"line":195},"admin_notices","deepl_admin_notice_nogutenberg_deepl_translated","modules\\deepl-translate-post.php",{"type":187,"name":197,"callback":210,"file":208,"line":211},"deepl_admin_notice_gutenberg_deepl_translated",36,{"type":187,"name":213,"callback":214,"file":208,"line":215},"admin_init","deepl_maybe_translate_post",65,{"type":187,"name":213,"callback":217,"file":218,"line":219},"loadSettings","settings\\wp-improved-settings.class.php",115,{"type":187,"name":213,"callback":221,"file":218,"line":222},"registerSettings",116,{"type":187,"name":224,"callback":225,"file":218,"line":226},"admin_menu","addToMenu",120,{"type":187,"name":206,"callback":228,"file":218,"line":229},"print_saved_notice",242,{"type":187,"name":206,"callback":231,"file":218,"line":232},"maybe_print_notices",244,{"type":234,"name":235,"callback":236,"file":237,"line":13},"filter","zebench_plugins_paths","wpdeepl_paths","wpdeepl.php",{"type":187,"name":188,"callback":239,"file":237,"line":240},"deepl_init",154,[],[],[],[],{"dangerousFunctions":246,"sqlUsage":252,"outputEscaping":254,"fileOperations":204,"externalRequests":77,"nonceChecks":181,"capabilityChecks":278,"bundledLibraries":279},[247],{"fn":248,"file":249,"line":250,"context":251},"unserialize","admin\\deepl-admin-functions.php",176,"wpdeepl_debug_display(unserialize($line));",{"prepared":181,"raw":26,"locations":253},[],{"escaped":255,"rawEcho":256,"locations":257},417,9,[258,262,264,266,268,270,272,274,276],{"file":259,"line":260,"context":261},"settings\\wp-improved-settings-api.class.php",395,"raw output",{"file":259,"line":263,"context":261},588,{"file":259,"line":265,"context":261},894,{"file":259,"line":267,"context":261},941,{"file":259,"line":269,"context":261},990,{"file":259,"line":271,"context":261},1049,{"file":259,"line":273,"context":261},1106,{"file":218,"line":275,"context":261},513,{"file":218,"line":277,"context":261},556,5,[],[281],{"entryPoint":282,"graph":283,"unsanitizedCount":26,"severity":299},"\u003Cwp-improved-settings.class> (settings\\wp-improved-settings.class.php:0)",{"nodes":284,"edges":296},[285,290],{"id":286,"type":287,"label":288,"file":218,"line":289},"n0","source","$_GET (x2)",317,{"id":291,"type":292,"label":293,"file":218,"line":294,"wp_function":295},"n1","sink","echo() [XSS]",378,"echo",[297],{"from":286,"to":291,"sanitized":298},true,"low",{"summary":301,"deductions":302},"The wpdeepl plugin exhibits a mixed security posture. On the positive side, static analysis reveals a very small attack surface with no identified unprotected entry points. The code also demonstrates strong adherence to secure coding practices regarding SQL queries, with all queries using prepared statements. Furthermore, output escaping is highly effective, with 98% of outputs properly escaped, and a significant number of capability checks are in place. However, a critical concern arises from the presence of the `unserialize` function, which is inherently risky if used with untrusted input. While the taint analysis did not reveal any unsanitized paths for this specific version, the potential for misuse remains significant.\n\nThe vulnerability history is particularly noteworthy. The plugin has a history of 3 medium-severity CVEs, specifically related to Cross-Site Request Forgery (CSRF) and Exposure of Sensitive Information. The fact that these vulnerabilities have been patched indicates the developers are responsive to security issues, but the repeated occurrence of certain vulnerability types suggests potential recurring weaknesses in input validation or handling that could be exploited. The most recent vulnerability was in October 2023.\n\nIn conclusion, wpdeepl has strengths in its limited attack surface and diligent use of prepared statements and output escaping. However, the `unserialize` function represents a latent risk, and the past prevalence of CSRF and information exposure vulnerabilities warrants careful monitoring and potentially deeper code review to ensure these issues are permanently addressed. The current version appears free of known unpatched vulnerabilities, which is a positive sign.",[303,306],{"reason":304,"points":305},"Presence of unserialize function",15,{"reason":307,"points":305},"History of 3 medium CVEs","2026-03-16T18:12:52.047Z",{"wat":310,"direct":319},{"assetPaths":311,"generatorPatterns":314,"scriptPaths":315,"versionParams":316},[312,313],"\u002Fwp-content\u002Fplugins\u002Fwpdeepl\u002Fassets\u002Fwpdeepl-admin.css","\u002Fwp-content\u002Fplugins\u002Fwpdeepl\u002Fassets\u002Fwpdeepl-metabox.js",[],[313],[317,318],"wpdeepl\u002Fassets\u002Fwpdeepl-admin.css?ver=","wpdeepl\u002Fassets\u002Fwpdeepl-metabox.js?ver=",{"cssClasses":320,"htmlComments":321,"htmlAttributes":323,"restEndpoints":325,"jsGlobals":326,"shortcodeOutput":336},[],[322],"\u003C!-- Error loading WPDeepL -->",[324],"name=\"wpdeepl_metabox_behaviour\"",[],[327,328,329,330,331,332,333,334,335],"DeepLStrings","WPDEEPL_VERSION","WPDEEPL_URL","WPDEEPL_PATH","WPDEEPL_FLAVOR","WPDEEPL_DEBUG","WPDEEPL_FILES_URL","WPDEEPL_FILES","WPDEEPL_SLUG",[],{"error":298,"url":338,"statusCode":339,"statusMessage":340,"message":340},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwpdeepl\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":204,"versions":342},[343,350,357,364,372,382,392,401],{"version":344,"download_url":345,"svn_tag_url":346,"released_at":36,"has_diff":48,"diff_files_changed":347,"diff_lines":36,"trac_diff_url":348,"vulnerabilities":349,"is_current":48},"2.4.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.2.4.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F2.4.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwpdeepl%2Ftags%2F2.4.3.12&new_path=%2Fwpdeepl%2Ftags%2F2.4.5",[],{"version":351,"download_url":352,"svn_tag_url":353,"released_at":36,"has_diff":48,"diff_files_changed":354,"diff_lines":36,"trac_diff_url":355,"vulnerabilities":356,"is_current":48},"2.4.3.12","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.2.4.3.12.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F2.4.3.12\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwpdeepl%2Ftags%2F2.4.3.9&new_path=%2Fwpdeepl%2Ftags%2F2.4.3.12",[],{"version":358,"download_url":359,"svn_tag_url":360,"released_at":36,"has_diff":48,"diff_files_changed":361,"diff_lines":36,"trac_diff_url":362,"vulnerabilities":363,"is_current":48},"2.4.3.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.2.4.3.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F2.4.3.9\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwpdeepl%2Ftags%2F1.7.5&new_path=%2Fwpdeepl%2Ftags%2F2.4.3.9",[],{"version":67,"download_url":365,"svn_tag_url":366,"released_at":36,"has_diff":48,"diff_files_changed":367,"diff_lines":36,"trac_diff_url":368,"vulnerabilities":369,"is_current":48},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.1.7.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F1.7.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwpdeepl%2Ftags%2F1.5.2.5&new_path=%2Fwpdeepl%2Ftags%2F1.7.5",[370,371],{"id":50,"url_slug":51,"title":52,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":55},{"id":32,"url_slug":33,"title":34,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":38},{"version":373,"download_url":374,"svn_tag_url":375,"released_at":36,"has_diff":48,"diff_files_changed":376,"diff_lines":36,"trac_diff_url":377,"vulnerabilities":378,"is_current":48},"1.5.2.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.1.5.2.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F1.5.2.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwpdeepl%2Ftags%2F1.2.5.1&new_path=%2Fwpdeepl%2Ftags%2F1.5.2.5",[379,380,381],{"id":62,"url_slug":63,"title":64,"severity":39,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"id":50,"url_slug":51,"title":52,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":55},{"id":32,"url_slug":33,"title":34,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":38},{"version":383,"download_url":384,"svn_tag_url":385,"released_at":36,"has_diff":48,"diff_files_changed":386,"diff_lines":36,"trac_diff_url":387,"vulnerabilities":388,"is_current":48},"1.2.5.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.1.2.5.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F1.2.5.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwpdeepl%2Ftags%2F1.0&new_path=%2Fwpdeepl%2Ftags%2F1.2.5.1",[389,390,391],{"id":62,"url_slug":63,"title":64,"severity":39,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"id":50,"url_slug":51,"title":52,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":55},{"id":32,"url_slug":33,"title":34,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":38},{"version":129,"download_url":393,"svn_tag_url":394,"released_at":36,"has_diff":48,"diff_files_changed":395,"diff_lines":36,"trac_diff_url":396,"vulnerabilities":397,"is_current":48},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwpdeepl%2Ftags%2F0.1.20180323&new_path=%2Fwpdeepl%2Ftags%2F1.0",[398,399,400],{"id":62,"url_slug":63,"title":64,"severity":39,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"id":50,"url_slug":51,"title":52,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":55},{"id":32,"url_slug":33,"title":34,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":38},{"version":402,"download_url":403,"svn_tag_url":404,"released_at":36,"has_diff":48,"diff_files_changed":405,"diff_lines":36,"trac_diff_url":36,"vulnerabilities":406,"is_current":48},"0.1.20180323","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpdeepl.0.1.20180323.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwpdeepl\u002Ftags\u002F0.1.20180323\u002F",[],[407,408,409],{"id":62,"url_slug":63,"title":64,"severity":39,"cvss_score":68,"vuln_type":70,"patched_in_version":67},{"id":50,"url_slug":51,"title":52,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":55},{"id":32,"url_slug":33,"title":34,"severity":39,"cvss_score":40,"vuln_type":42,"patched_in_version":38}]