Wow-company Side Menu Lite — known CVE vulnerabilities
Every CVE whose affected-product data names Wow-company Side Menu Lite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-3476 — CVSS 8.8 (high): The Side Menu Lite WordPress plugin before 4.2.1 does not have CSRF checks in some bulk actions, which could allow attackers to make logged…
CVE-2023-2362 — CVSS 6.1 (medium): The Float menu WordPress plugin before 5.0.2, Bubble Menu WordPress plugin before 3.0.4, Button Generator WordPress plugin before 2.3.5…
CVE-2023-27418 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Side Menu Lite – add sticky fixed buttons plugin <= 4.0 versions.