VYPR

Easy Mega Menu

by WordPress

CVEs (2)

  • CVE-2024-8433MedOct 8, 2024
    risk 0.42cvss 6.4epss 0.00

    The Easy Mega Menu Plugin for WordPress – ThemeHunk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘themehunk_megamenu_bg_image' parameter in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping. This…

  • CVE-2024-8434Sep 25, 2024
    risk 0.00cvss epss 0.00

    The Easy Mega Menu Plugin for WordPress – ThemeHunk plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions hooked via AJAX in all versions up to, and including, 1.0.9. This makes it possible for authenticated attackers,…