VYPR

Altra Side Menu

by WordPress

Source repositories

CVEs (2)

  • CVE-2024-12773HigJan 27, 2025
    risk 0.47cvss 7.2epss 0.01

    The Altra Side Menu WordPress plugin through 2.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks

  • CVE-2024-12774MedJan 27, 2025
    risk 0.42cvss 6.5epss 0.00

    The Altra Side Menu WordPress plugin through 2.0 does not have CSRF checks in some places, which could allow attackers to make logged in admins delete arbitrary menu via a CSRF attack