0.001 Low
EPSS
Percentile
24.2%
The plugin does not adequately validate certain requests use nonces, which can lead to a Cross-Site Request Forgery (CSRF) vulnerability.
patchstack.com/database/vulnerability/ht-menu-lite/wordpress-ht-menu-wordpress-mega-menu-builder-for-elementor-plugin-1-2-1-cross-site-request-forgery-csrf-vulnerability