CVE-2022-25602

Nonce token leak vulnerability leading to arbitrary file upload, theme deletion, plugin settings change discovered in Responsive Menu WordPress plugin (versions <= 4.1.7).

Link	Resource
https://patchstack.com/database/vulnerability/responsive-menu/wordpress-responsive-menu-plugin-4-1-7-nonce-token-leak-leading-to-arbitrary-file-upload-theme-deletion-plugin-settings-change-vulnerability	Third Party Advisory
https://wordpress.org/plugins/responsive-menu/#developers	Product Release Notes

Configuration 1

cpe:2.3:a:expresstech:responsive_menu:*:*:*:*:*:wordpress:*:*

---

Published : 2022-03-18 06:15

Updated : 2022-03-25 06:43

---

NVD link : CVE-2022-25602

Mitre link : CVE-2022-25602

No products.

CWE-434