ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WPML Plugin <= 3.1.8 - Multiple Vulnerabilities

Product
WPML - WordPress Multilingual
Description
This WordPress Multilingual plugin is prone to SQL injection, missing authentication, page/post/menu deletion and reflected XSS vulnerabilities.
Solution
Update the plugin.
Classification
Type Multi
References
CVE Mitre
CVE
Name CVE-2015-2792
Versions
Affected In <= 3.1.8
Fixed In 3.1.9
Disclosure date
2015-03-30
Credits
Klikki Oy