Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin AllWebMenus WordPress Menu abspath Parameter Remote File Include - CVE-2011-3981 - Vulnerability Database
WP Plugin Allwebmenus Wordpress Menu Plugin

WordPress Plugin AllWebMenus WordPress Menu abspath Parameter Remote File Include - CVE-2011-3981

Critical
Reference: CVE-2011-3981
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-3981
Title: WordPress Plugin AllWebMenus WordPress Menu abspath Parameter Remote File Include
Overview:

WordPress Plugin AllWebMenus WordPress Menu is prone to a remote file include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue could allow an attacker to compromise the application and the underlying system other attacks are also possible. WordPress Plugin AllWebMenus WordPress Menu version 1.1.3 is vulnerable prior versions may also be affected.