Open
Reported for: WPML Multilingual CMS 4.9.0
Overview of the issue
When you use WPML 4.9.0 together with the Wordfence plugin, you may see security warnings reporting a potential backdoor or malicious code inside WPML files. More precisely, inside wp-content/plugins/wpml-string-translation/lib/StringScanning/vendor/wp-cli/wp-cli/features/context.feature file.
Workaround
No action is required on your side. It is a false positive which has been addressed and will be solved in the next WPML version.
What if I have followed WordFence’s advice and deleted the file? Can I re-install it? Thanks!
Hi Water,
You can download WPML 4.9 and reinstall it.
Thank you for your quick reply, Nicolas,
can I just reinstall the String translation plugin, via install new plugin -> commercial -> WPML?
Best regards,
Olaf
Hi,
Sure, you can use the commercial tab or download it from the changelog.