Lucene search

K

Sticky Header Security Vulnerabilities

cve
cve

CVE-2021-24425

The Floating Notification Bar, Sticky Menu on Scroll, and Sticky Header for Any Theme – myStickymenu WordPress plugin before 2.5.2 does not sanitise or escape its Bar Text settings, allowing hight privilege users to use malicious JavaScript in it, leading to a Stored Cross-Site Scripting issue, whi...

4.8CVSS

4.9AI Score

0.001EPSS

2021-08-02 11:15 AM
32
5
cve
cve

CVE-2022-35730

Cross-Site Request Forgery (CSRF) vulnerability in Oceanwp sticky header plugin <= 1.0.8 on WordPress.

6.5CVSS

6.6AI Score

0.001EPSS

2022-12-04 11:15 PM
31
cve
cve

CVE-2023-5509

The myStickymenu WordPress plugin before 2.6.5 does not adequately authorize some ajax calls, allowing any logged-in user to perform the actions.

5.4CVSS

5.4AI Score

0.0004EPSS

2023-11-20 07:15 PM
15