Vulnerability CVE-2024-2405
Published: 2024-05-02

Description:
The Float menu WordPress plugin before 6.0.1 does not have CSRF check in its bulk actions, which could allow attackers to make logged in admin delete arbitrary menu via a CSRF attack.

 References:
https://wpscan.com/vulnerability/c42ffa15-6ebe-4c70-9e51-b95bd05ea04d/
Copyright 2024, cxsecurity.com

 

Back to Top