User Language Switch

Vulnerabilities 3Slug user-language-switchLatest version 1.6.10WordPress.org →Closed
N/A Unfixed Closed
2026-02-13≤ 1.6.10

User Language Switch <= 1.6.10 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'tab_color_picker_language_switch' Parameter

WordfenceCVE
Medium 5.5 Unfixed Closed
2026-02-14≤ 1.6.10

CVE-2026-0745

CVEWordfence