qTranslate-XT (eXTended) - reviving qTranslate-X multilingual plugin for WordPress. A new community-driven plugin soon. Built-in modules for WooCommerce, ACF, slugs and others.
No, nothing has been fixed. What is mentioned in #693 concerns the last official QT-X plugin in WP but since QT-XT is not in WP yet there's no update there.
If you have suggestions how to fix this let us know.
Has the most recent XSS flaw in
qtranslate-x
been fixed with this updated codebase? I saw #693, but that appears to be an older vulnerability.As a recap of the linked URL, the legacy codebase was not properly escaping these post parameters: