Hero Mega Menu

Vulnerabilities 6Slug hmenuLatest version 1.0Plugin page →

Minimum safe version

No explicit fix version available

Latest available1.0 ⚠ 6 vulnerabilities have no fix
Medium 6.5 Unfixed
2025-03-05≤ 1.16.5

Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 - Authenticated (Subscriber+) SQL Injection

CVEEUVDWordfence
Medium 6.1 Unfixed
2025-03-05≤ 1.16.5

Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 - Reflected Cross-Site Scripting

CVEEUVDWordfence
Medium 6.5 Unfixed
2025-03-05≤ 1.16.5

Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Directory Deletion

CVEEUVDWordfence
High 7.1 Unfixed
2025-01-21≤ 1.16.5

CVE-2024-49300

CVEWordfence
High 8.5 Unfixed
2025-01-21≤ 1.16.5

WordPress Hero Menu plugin <= 1.16.5 - SQL Injection vulnerability

CVEWordfence
High 8.5 Unfixed
2025-01-21≤ 1.16.5

WordPress Hero Menu plugin <= 1.16.5 - SQL Injection vulnerability

CVEPatchstackWordfence