CVE-2025-53485 — SetTranslationHandler.php does not validate that the user is an election admin, allowing any (even unauthenticated) user to change election-related translation text. While partially broken in newer Me — CVE Database · The Intelligence Room