Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

admin menu editor vulnerabilities and exploits

(subscribe to this query)
6.1
CVSSv3

CVE-2022-0625

The Admin Menu Editor WordPress plugin up to and including 1.0.4 does not sanitize and escape a parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.
Unknown Admin Menu EditorAdmin Menu Editor Project Admin Menu Editor
8.8
CVSSv3

CVE-2024-24876

Cross-Site Request Forgery (CSRF) vulnerability in Janis Elsts Admin Menu Editor.This issue affects Admin Menu Editor: from n/a up to and including 1.12.
W-shadow Admin Menu Editor
8.8
CVSSv3

CVE-2023-26690

File Upload vulnerability in CS-Cart MultiVendor 4.16.1 allows remote malicious users to run arbitrary code via File Manager/Editor component in the vendor or admin menu.
Cs-cart Cs-cart MultivendorCs-cart Cs-cart Multivendor 4.16.1
6.3
CVSSv3

CVE-2022-4974

The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in...
Paretodigital Yasr – Yet Another Star Rating Plugin For WordpressNicheaddons Events Addon For ElementorDots Fraud Prevention For Woocommerce And EddWpengine Gutenberg Blocks – Acf Blocks SuiteBouncingsprout UltimeterToddhalfpenny Past Events ExtensionPootlepress Pootle Pagebuilder – Wordpress Page BuilderPowerfulwp Local Delivery Drivers For WoocommerceKkikuchi1220 Ultimate Gutenberg – Custom Block TemplatesJosevega Wp Required Taxonomies – Categories And Tags MandatoryPmbaldha Featured Products First For Woocommerce – A Extension Of Woocommerce (woocommerce Addon Plugin)Sslzen Ssl Certificate – Free Ssl, Https By Ssl Zen
6.1
CVSSv3

CVE-2019-11358

jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery JqueryDebian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0Drupal DrupalBackdropcms BackdropFedoraproject Fedora 28Fedoraproject Fedora 29Fedoraproject Fedora 30Opensuse Backports Sle 15.0Opensuse Leap 15.1Netapp Oncommand System Manager
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
ruoyi-aiCVE-2025-6417CVE-2025-6362aquatronicainfosphere information serverarbitrary codevalidationIMAPwinrarCVE-2025-6018CVE-2025-6402CVE-2025-6447CVE-2025-4275
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook