cvedb.io
CVE-2022-3691
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2022-11-21T11:15:20.750 · Last modified 2026-06-17T05:00:07.160

Summary

The DeepL Pro API translation plugin WordPress plugin before 1.7.5 discloses sensitive information (including the DeepL API key) in files that are publicly accessible to an external, unauthenticated visitor.

Affected products

fluenx — deepl_pro_api_translation

Does this affect you?

Add your gear to cvedb and we'll alert you only when fluenx ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.