CVE-2025-53987 WordPress JetMenu <= 2.4.11.1 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetMenu jet-menu allows Retrieve Embedded Sensitive Data.This issue affects JetMenu: from n/a through = 2.4.11.1...

CVE-2025-26953 WordPress JetMenu plugin <= 2.4.9 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Crocoblock JetMenu jet-menu allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JetMenu: from n/a through = 2.4.9...

CVE-2025-26953 WordPress JetMenu plugin <= 2.4.9 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Crocoblock JetMenu jet-menu allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JetMenu: from n/a through = 2.4.9...

CVE-2025-26953

CVE-2025-26953 is a Missing Authorization vulnerability in Crocoblock JetMenu (JetMenu for Elementor) affecting versions up to and including 2.4.9. The issue allows accessing functionality not constrained by ACLs, with CVSS v3.1 base score 7.5 (Network, Low attack complexity, No privileges requir...

WordPress JetMenu Plugin <= 2.4.1 is vulnerable to Broken Access Control

Software JetMenu Type Plugin Vulnerable versions = 2.4.1 Fixed in 2.4.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48761 Patch priority Medium CVSS severity Medium 6.3 Developer Crocoblock PSID ee6cfa0a1486 Credits Rafie Muhammad Patchstack Required...

WordPress JetMenu Plugin <= 2.4.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software JetMenu Type Plugin Vulnerable versions = 2.4.1 Fixed in 2.4.2 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-48762 Patch priority Low CVSS severity Low 6.3 Developer Crocoblock PSID d0e207df7370 Credits Rafie Muhammad Patchstack Requir...

WordPress JetMenu Plugin <= 2.4.1 is vulnerable to Broken Access Control

Software JetMenu Type Plugin Vulnerable versions = 2.4.1 Fixed in 2.4.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID d2123458ae3d Credits Rafie Muhammad Patchstack Required...