Vulnerabilities > Wpml > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-21 | CVE-2024-6386 | Code Injection vulnerability in Wpml The WPML plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.6.12 via the Twig Server-Side Template Injection. | 8.8 |
| 2022-11-17 | CVE-2022-45071 | Cross-Site Request Forgery (CSRF) vulnerability in Wpml Cross-Site Request Forgery (CSRF) vulnerability in WPML Multilingual CMS premium plugin <= 4.5.13 on WordPress. | 8.8 |