We have released WPML Beta 4.3.4. Before reporting issues please make sure to give it a try - this version resolves all known issues with the major WPML 4.3.0 release

This is the technical support forum for WPML - the multilingual WordPress plugin.

Everyone can read, but only WPML clients can post here. WPML team is replying on the forum 6 days per week, 22 hours per day.

This topic contains 2 replies, has 2 voices.

Last updated by Bruno 3 years, 5 months ago.

Assigned support staff: Bruno.

Author Posts
June 9, 2016 at 5:31 pm #904631

tomT-7

Hi WPML Support and Security teams,

Wrike Security Team investigated and detected that the WPML plugin is vulnerable to multiple SQL Injection vulnerabilities in the functionality of detecting language from blog url. The vulnerability has not been assigned to the CVE identifier yet.

Versions Affected: ver:3.4.0 and below

Business Impact
Unauthorised access to critical information on system having WordPress and WPML plugin.
Full ownership under the hosts.

Way to exploit
The WPML has the access to database and executes SQL queries where url parameters are parsed without any validation and directly used for concatenation of queries, allowing an attacker to insert arbitrary values into an SQL query.

Due to the fact the many public resources using WPML plugin are vulnerable to this critical vulnerability, Wrike Security team suggests to implement the appropriate fix in the next WPML release, to raise appropriate CVE in NVD and to inform all affected users of WPML plugin.

Please keep us updated regarding fix and let us know in case of any questions via security@team.wrike.com.

June 9, 2016 at 8:25 pm #904945

Bruno
Supporter

Languages: English (English ) Portuguese (Brazil) (Português )

Timezone: America/Sao_Paulo (GMT-03:00)

Hi Tom,

Thanks for contacting us.

I will forward your ticket for our developers. Soon we'll get in touch.

Thank you.

June 9, 2016 at 8:43 pm #904970

Bruno
Supporter

Languages: English (English ) Portuguese (Brazil) (Português )

Timezone: America/Sao_Paulo (GMT-03:00)

Hi Tom, I sent an email to you. Please reply privately the email.

Thank you.

The topic ‘[Closed] SQL Injection Vulnerabilities in The WordPress Multilingual Plugin (WPML)’ is closed to new replies.