Vulnerabilities > CVE-2021-24942 - Unspecified vulnerability in Menu Item Visibility Control Project Menu Item Visibility Control 0.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
The Menu Item Visibility Control WordPress plugin through 0.5 doesn't sanitize and validate the "Visibility logic" option for WordPress menu items, which could allow highly privileged users to execute arbitrary PHP code even in a hardened environment.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |