← Back

Conditional Menus

conditional_menus

Vendor: Themify • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-2654
1Themify
1Conditional Menus
Dec 12, 2024
Jun 19, 2023
N/A· v4
6.1 MEDIUM· v3
N/A· v2
The Conditional Menus WordPress plugin before 1.2.1 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such...Show more
The Conditional Menus WordPress plugin before 1.2.1 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as adminShow less