Design/Logic Flaw

2022-03-1818:15:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

Nonce token leak vulnerability leading to arbitrary file upload, theme deletion, plugin settings change discovered in Responsive Menu WordPress plugin (versions <= 4.1.7).

CPENameOperatorVersion
responsive_menule4.1.7

CPE	Name	Operator	Version
	responsive_menu	le	4.1.7

References

patchstack.com/database/vulnerability/responsive-menu/wordpress-responsive-menu-plugin-4-1-7-nonce-token-leak-leading-to-arbitrary-file-upload-theme-deletion-plugin-settings-change-vulnerability

wordpress.org/plugins/responsive-menu/