Critical WPML Plugin Vulnerability Affects Over 1 Million WordPress Sites

Posted on August 28, 2024

Security researchers discovered a critical vulnerability in the WPML WordPress
plugin, currently installed on more than a million websites, posing a
significant security risk.

The flaw, tracked as CVE-2024-6386
[https://nvd.nist.gov/vuln/detail/CVE-2024-6386] and carrying a CVSS score of
9.9, is a critical remote code execution (RCE) vulnerability affecting all
versions through 4.6.12 of the WPML plugin.

Flaw Stemmed from Failure to Validate and Sanitize Input
The plugin WPML, short for WordPr

Related Posts

Antarctic Ice Core Unlocks 1.2 Million Years of Unbroken Climate History, Setting New Record

News

The achievement represents the longest continuous record of Earth’s climate…

rooter
January 9, 2025
1 min read
0

Q&A: UK Ambassador on Creating New Cybersecurity Agencies Around the World

News

How the UK is assisting other nations in forming their…

rooter
October 11, 2023
1 min read
0

Jonathan Hickman and Valerio Schiti’s New Marvel Comic Looks Positively Epic

News

Writer Jonathan Hickman—known for his work on the Fantastic Four,…

rooter
March 29, 2023
1 min read
0

Netflix’s Sandman Is Summoning Loki, Thor, and Odin for Season 2

News

Netflix has cast a fresh pantheon of gods, faeries, talking…

rooter
July 2, 2024
1 min read
0