Critical SSTI Flaw in WPML Plugin Exposes Millions of WordPress Sites to RCE Attacks
Critical SSTI Flaw in WPML Plugin Exposes Millions of WordPress Sites to RCE Attacks
27 August 2024
This vulnerability allows authorized users to inject and execute malicious code through the plugin's shortcode feature, potentially leading to data theft and website takeover.