Authenticated Cross-Site Request Forgery (CSRF) vulnerability leading to Remote Code Execution (RCE) discovered by Gerard Arall in WordPress WPML plugin (versions <= 4.3.6).
Update the WordPress WPML plugin to the latest available version (at least 4.3.7).
CPE | Name | Operator | Version |
---|---|---|---|
wpml - wordpress multilingual | le | 4.3.6 |