WPML is a premium plug-in for creating multilingual WordPress sites. The official WPML websites states that over 400,00 commercial sites have this plug-in installed.
Several security issues were found in the plug-in, the most serious of them being a SQL injection problem that can be exploited by an attacker to read the contents of a website’s database, including user details and password hashes, without authentication.
The developers of WPML released an update earlier this week to address the security issues.
Other security issues included:
You must be logged in to post a comment.
Text Widget from primary area. Read more
Sorry. No data so far.
© 2012 Toronto Professional services LTD. All rights reserved