MEDIUM
krishaweb
CVE published 2026-06-24
CVE-2026-8688
The Advance Nav Menu Manager plugin for WordPress has a critical vulnerability (CVE-2026-8688) that allows authenticated attackers with subscriber-level access to modify navigation menus without authorization. This vulnerability has a CVSS score of 4.3 and is classified as MEDIUM severity. The plugin does not properly verify user authorization for certain actions, making it possible for attackers to dupli [truncated]