WP Beacon

Translate Multilingual sites – TranslatePress

translatepress-multilingual · by cozmoslabs · wordpress.org ↗ · SVN ↗
Active installs
400k+
Current version
3.1.8
Added
2017-08-31
Last updated
2026-04-28 (4d ago)
First seen by beacon
11d ago
Total downloads
18,383,678

Alerts (0)

No open alerts.

Show 2 resolved alerts
Critical code_pattern Resolved · no_longer_matches 2026-04-24 17:01:47 (7d ago)
Slugtranslatepress-multilingual
Patternunserialize_after_remote_call
Kindbuiltin
Version3.1.7
Hit count3
First hit
File
includes/class-edd-sl-plugin-updater.php
Line
418
Snippet
L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' = → L418: $request->sections = maybe_unserialize($request->sections);
Explanationa remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file — classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak.
View raw JSON
{
    "slug": "translatepress-multilingual",
    "pattern": "unserialize_after_remote_call",
    "kind": "builtin",
    "version": "3.1.7",
    "hit_count": 3,
    "first_hit": {
        "file": "includes/class-edd-sl-plugin-updater.php",
        "line": 418,
        "snippet": "L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' =  \u2192  L418: $request->sections = maybe_unserialize($request->sections);"
    },
    "explanation": "a remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file \u2014 classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak."
}
Critical code_scan_delta Resolved · fp_edd_updater_library 2026-04-24 15:58:19 (7d ago)
Slugtranslatepress-multilingual
Previous version3.1.7
Current version3.1.7
New findings
PatternKindFileLineSnippetConfidence
unserialize_after_remote_callbuiltinincludes/class-edd-sl-plugin-updater.php418L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' = → L418: $request->sections = maybe_unserialize($request->sections);high
unserialize_after_remote_callbuiltinincludes/class-edd-sl-plugin-updater.php424L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' = → L424: $request->banners = maybe_unserialize($request->banners);high
unserialize_after_remote_callbuiltinincludes/class-edd-sl-plugin-updater.php483L475: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverif → L483: $version_info->sections = maybe_unserialize($version_info->sections);high
New finding count3
View raw JSON
{
    "slug": "translatepress-multilingual",
    "previous_version": "3.1.7",
    "current_version": "3.1.7",
    "new_findings": [
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "includes/class-edd-sl-plugin-updater.php",
            "line": 418,
            "snippet": "L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' =  \u2192  L418: $request->sections = maybe_unserialize($request->sections);",
            "confidence": "high"
        },
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "includes/class-edd-sl-plugin-updater.php",
            "line": 424,
            "snippet": "L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' =  \u2192  L424: $request->banners = maybe_unserialize($request->banners);",
            "confidence": "high"
        },
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "includes/class-edd-sl-plugin-updater.php",
            "line": 483,
            "snippet": "L475: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverif  \u2192  L483: $version_info->sections = maybe_unserialize($version_info->sections);",
            "confidence": "high"
        }
    ],
    "new_finding_count": 3
}

SVN committers (4)

Accounts with actual commit access to translatepress-multilingual on plugins.svn.wordpress.org, reconstructed from svn log. This is the list that matters for ownership changes — not the readme contributors.

Committer Member since Commits First commit Latest commit
madalin.ungureanu 2012-02-28 46 2017-08-31 · r1722670 2025-11-13 · r3395140
Georgian Cocora 2016-07-11 4 2024-10-10 · r3166422 2024-11-08 · r3184436
plugin-master 2007-03-09 1 2017-08-30 · r1722307 2017-08-30 · r1722307
Razvan Mocanu 2015-07-23 1 2018-02-21 · r1826311 2026-04-28 · r3517273

Readme contributors (5)

Names the plugin's readme declares as contributors. A soft signal — anyone can be listed. The SVN access column is the ground-truth cross-reference: does this contributor actually commit code?

Contributor Member since SVN access Status
Cozmoslabs 2014-09-16 Active
Cristian Antohe 2006-04-13 Active
Cristophor Hurduban 2015-03-30 Active
madalin.ungureanu 2012-02-28 Active
Razvan Mocanu 2015-07-23 Active

Versions (100 most recent)

Version Released Download
3.1.8 2026-04-28 · 4d ago zip
3.1.7 2026-04-21 · 11d ago zip
3.1.6 2026-04-20 · 12d ago zip
3.1.5 2026-04-15 · 17d ago zip
3.1.4 2026-04-01 · 1mo ago zip
3.1.3 2026-03-18 · 1mo ago zip
3.1.2 2026-03-17 · 1mo ago zip
3.1.1 2026-03-09 · 1mo ago zip
3.1 2026-03-04 · 1mo ago zip
3.0.9 2026-02-10 · 2mo ago zip
3.0.8 2026-02-03 · 2mo ago zip
3.0.7 2026-01-13 · 3mo ago zip
3.0.6 2025-12-15 · 4mo ago zip
3.0.5 2025-11-26 · 5mo ago zip
3.0.4 2025-11-18 · 5mo ago zip
3.0.3 2025-11-13 · 5mo ago zip
3.0.2 2025-11-04 · 5mo ago zip
3.0.1 2025-10-23 · 6mo ago zip
3.0 2025-10-13 · 6mo ago zip
2.10.7 2025-10-07 · 6mo ago zip
2.10.6 2025-09-29 · 7mo ago zip
2.10.5 2025-09-15 · 7mo ago zip
2.10.4 2025-09-10 · 7mo ago zip
2.10.3 2025-09-01 · 8mo ago zip
2.10.2 2025-08-27 · 8mo ago zip
2.10.1 2025-08-26 · 8mo ago zip
2.10 2025-08-26 · 8mo ago zip
2.9.24 2025-08-25 · 8mo ago zip
2.9.23 2025-08-18 · 8mo ago zip
2.9.22 2025-07-24 · 9mo ago zip
2.9.21 2025-07-23 · 9mo ago zip
2.9.20 2025-07-15 · 9mo ago zip
2.9.19 2025-06-17 · 10mo ago zip
2.9.18 2025-06-10 · 10mo ago zip
2.9.17 2025-06-10 · 10mo ago zip
2.9.16 2025-05-27 · 11mo ago zip
2.9.15 2025-05-13 · 11mo ago zip
2.9.14 2025-05-13 · 11mo ago zip
2.9.13 2025-05-06 · 12mo ago zip
2.9.12 2025-04-22 · 1y ago zip
2.9.11 2025-04-14 · 1y ago zip
2.9.10 2025-03-26 · 1y ago zip
2.9.9 2025-03-25 · 1y ago zip
2.9.8 2025-03-19 · 1y ago zip
2.9.7 2025-03-18 · 1y ago zip
2.9.6 2025-03-11 · 1y ago zip
2.9.5 2025-02-11 · 1y ago zip
2.9.4 2025-02-04 · 1y ago zip
2.9.3 2024-12-18 · 1y ago zip
2.9.2 2024-12-12 · 1y ago zip
2.9.1 2024-12-09 · 1y ago zip
2.9.0 2024-11-25 · 1y ago zip
2.8.9 2024-11-08 · 1y ago zip
2.8.8 2024-10-29 · 1y ago zip
2.8.7 2024-10-08 · 1y ago zip
2.8.4 2024-08-21 · 1y ago zip
2.8.3 2024-08-14 · 1y ago zip
2.8.2 2024-08-06 · 1y ago zip
2.8.1 2024-07-03 · 1y ago zip
2.8.0 2024-06-26 · 1y ago zip
2.7.9 2024-06-10 · 1y ago zip
2.7.8 2024-05-22 · 1y ago zip
2.7.7 2024-05-21 · 1y ago zip
2.7.6 2024-04-29 · 2y ago zip
2.7.5 2024-04-17 · 2y ago zip
2.7.4 2024-03-25 · 2y ago zip
2.7.3 2024-03-06 · 2y ago zip
2.7.2 2024-02-21 · 2y ago zip
2.7.1 2024-02-05 · 2y ago zip
2.7.0 2024-01-22 · 2y ago zip
2.6.9 2023-12-18 · 2y ago zip
2.6.8 2023-12-11 · 2y ago zip
2.6.7 2023-11-27 · 2y ago zip
2.6.6 2023-11-15 · 2y ago zip
2.6.5 2023-10-30 · 2y ago zip
2.6.4 2023-10-17 · 2y ago zip
2.6.3 2023-10-04 · 2y ago zip
2.6.2 2023-09-19 · 2y ago zip
2.6.1 2023-09-04 · 2y ago zip
2.6.0 2023-08-22 · 2y ago zip
2.5.9 2023-08-08 · 2y ago zip
2.5.8 2023-07-26 · 2y ago zip
2.5.7 2023-07-11 · 2y ago zip
2.5.6 2023-06-27 · 2y ago zip
2.5.5 2023-06-13 · 2y ago zip
2.5.4 2023-05-29 · 2y ago zip
2.5.3 2023-05-15 · 2y ago zip
2.5.2 2023-05-04 · 2y ago zip
2.5.1 2023-04-05 · 3y ago zip
2.5.0 2023-03-21 · 3y ago zip
2.4.9 2023-03-06 · 3y ago zip
2.4.8 2023-02-23 · 3y ago zip
2.4.7 2023-02-08 · 3y ago zip
2.4.6 2023-01-24 · 3y ago zip
2.4.5 2023-01-11 · 3y ago zip
2.4.4 2022-12-20 · 3y ago zip
2.4.3 2022-12-12 · 3y ago zip
2.4.2 2022-11-23 · 3y ago zip
2.4.1 2022-11-15 · 3y ago zip
2.4.0 2022-11-01 · 3y ago zip