Critical severity9.8NVD Advisory· Published Oct 16, 2024· Updated Apr 15, 2026
CVE-2021-4443
CVE-2021-4443
Description
The WordPress Mega Menu plugin for WordPress is vulnerable to Arbitrary File Creation in versions up to, and including, 2.0.6 via the compiler_save AJAX action. This makes it possible for unauthenticated attackers to create arbitrary PHP files that can be used to execute malicious code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=2.0.6+ 1 more
- (no CPE)range: <=2.0.6
- (no CPE)range: <=2.0.6
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.