CVE Vulnerabilities

CVE-2021-24942

Published: Dec 26, 2022 | Modified: Jun 30, 2023
CVSS 3.x
7.2
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

The Menu Item Visibility Control WordPress plugin through 0.5 doesnt sanitize and validate the Visibility logic option for WordPress menu items, which could allow highly privileged users to execute arbitrary PHP code even in a hardened environment.

Affected Software

Name Vendor Start Version End Version
Menu_item_visibility_control Menu_item_visibility_control_project * 0.5

References