CVE-2026-1921 Blast Radius

MEDIUM • CVSS 4.9The Loco Translate plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 2.8.2 via the `fsReference` AJAX route.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-1921.

Start Free Scan →← Back to CVE-2026-1921