Vulnerabilities > Advanced Menu Widget Project

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-5085 Cross-site Scripting vulnerability in Advanced Menu Widget Project Advanced Menu Widget
The Advanced Menu Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'advMenu' shortcode in versions up to, and including, 0.4.1 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
advanced-menu-widget-project CWE-79
5.4