← Back

Mega Menu

mega_menu

Vendor: Themehunk • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-30990
1Themehunk
1Mega Menu
Apr 23, 2026
Jun 6, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
Missing Authorization vulnerability in ThemeHunk ThemeHunk themehunk-megamenu-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ThemeHunk: from n/a through <= 1.2.0.
CVE-2024-8434
1Themehunk
1Mega Menu
Dec 17, 2024
Sep 25, 2024
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Easy Mega Menu Plugin for WordPress – ThemeHunk plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions hooked via AJAX in all versions up to, and including, 1...Show more
The Easy Mega Menu Plugin for WordPress – ThemeHunk plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions hooked via AJAX in all versions up to, and including, 1.0.9. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform actions like updating plugin settings.Show less