Custom-sub-menus Project CVEs and Security Vulnerabilities

Filtered by vendor Custom-sub-menus Project Subscriptions

Switch to Advanced Search (Beta)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2021-38321	1 Custom-sub-menus Project	1 Custom-sub-menus	2025-05-05	6.1 Medium
The Custom Menu Plugin WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the selected_menu parameter found in the ~/custom-menus.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.3.3.

Page 1 of 1.