I think the last one is a false positive and on the top one, it seems that there's been a change to that file.
With Wordfence, you should be able to see what was the change and you can also restore the file to the version it was before.
Also, please check your WPML.org Downloads area here (https://wpml.org/account/downloads/ - select "Manual download") and make sure that you have the latest (up-to-date) versions installed for all the plugins.
If it's correctly installed, then that's just a false positive notice.
The vulnerability issue was fixed in 3.2.6.
Mihai
Manage Cookie Consent
We use cookies to optimize our website and services. Your consent allows us to process data such as browsing behavior. Not consenting may affect some features.
Functional
Always active
Required for our website to operate and communicate correctly.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
We use these to analyze the statistics of our site. Collected information is completely anonymous.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
These cookies track your browsing to provide ads relevant to you.
