Multilingual CMS

Plugin

Set alert

Claim

VDP

Developer

OnTheGoSystems

Current version

N/A

Installations

N/A

Last updated

N/A

Vulnerability history

0 present

7 patched

4.7.3 Authenticated (Contributor+) Stored CrossSite Scripting via wpml_language_switcher Shortcode 3.6.0-4.7.3

6.5

1 May, 2025

Authenticated (Contributor+) Remote Code Execution via Twig ServerSide Template Injection vulnerability <= 4.6.12

9.9

21 August, 2024

CrossSite Request Forgery (CSRF) vulnerability <= 4.5.13

4.3

9 November, 2022

CrossSite Request Forgery (CSRF) vulnerability <= 4.5.13

5.4

9 November, 2022

Broken Access Control vulnerability <= 4.5.10

4.3

9 November, 2022

Multilingual CMS

Developer

Current version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Multilingual CMS

Developer

Current version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Let us know if we have missed a vulnerability reported elsewhere

reCAPTCHA's verification failed!

Thank you for contributing!