We've become aware of a vulnerability with the WPML String Translation plugin that was alerted to us by a 3rd party on behalf of WP Engine (WP Engine have been automatically alerting our clients by email) – their report is here: קישור נסתר
Are you aware of this issue and can we expect a patch any time soon? We have a lot of clients spooked about it, so would be good to put their minds at ease.
