Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
WordPress Plugin WP Floating Menu-One page navigator sticky menu for WordPress includes Backdoor Only if downloaded via the vendor website - CVE-2021-24867 - Vulnerability Database
WP Plugin Wp Floating Menu

WordPress Plugin WP Floating Menu-One page navigator sticky menu for WordPress includes Backdoor Only if downloaded via the vendor website - CVE-2021-24867

Critical
Reference: CVE-2021-24867
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24867
Title: WordPress Plugin WP Floating Menu-One page navigator sticky menu for WordPress includes Backdoor Only if downloaded via the vendor website
Overview:

WordPress Plugin WP Floating Menu-One page navigator sticky menu for WordPress only if downloaded via the vendor website contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin WP Floating Menu-One page navigator sticky menu for WordPress version 1.4.4 is vulnerable prior versions may also be affected.