Descrição
The Hero Mega Menu – Responsive WordPress Menu Plugin plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the hmenu_delete_menu() function in all versions up to, and including, 1.16.5. This makes it possible for unauthenticated attackers to delete arbitrary directories on the server.
Software
Não informado
Tipo Software
Plugin
CVE
CVE-2024-13780
Tags
Nâo informado
Data de publicação
05/03/2025
Última atualização
06/03/2025
Pontuação em CVSS 3.0
6.5
Médio