WordPress Plugin Simple Admin Language Change is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change user locale setting. WordPress Plugin Simple Admin Language Change version 2.0.1 is vulnerable; prior versions may also be affected.
Update to plugin version 2.0.2 or latest
WordPress Plugin post highlights 'ph_settings.php' SQL Injection (2.2)
WordPress Plugin Vuukle Comments, Reactions, Share Bar, Revenue Cross-Site Request Forgery (3.4.31)
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.5)
WordPress Plugin White Label CMS PHP Object Injection (2.4)
WordPress Plugin Booster for WooCommerce PHP Object Injection (3.0.1)