Description
WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress version 1.4.4 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.4.5 or latest
References
Related Vulnerabilities
Jboss EAP CVE-2011-1483 Vulnerability (CVE-2011-1483)
WordPress Plugin External Media Arbitrary File Upload (1.0.33)
WordPress Plugin Verse-O-Matic Cross-Site Request Forgery (4.1.1)
Apache Tomcat Other Vulnerability (CVE-2006-7197)
Next.js Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2022-36046)