WP Mobile Menu – The Mobile-Friendly Responsive Menu

Vulnerabilities 14Slug mobile-menuLatest version 2.8.8WordPress.org →

Minimum safe version

2.8.7

Update to 2.8.7 or later to address 14 fixable vulnerabilities

Latest available2.8.8 ✓

Medium 6.1

2026-05-01< 2.8.7

CVE-2024-13362

CVE Wordfence

Medium 6.3

2024-10-16< 2.8.2.7

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE

Medium 5.3

2024-07-31< 2.8.5

CVE-2024-2508

CVE Patchstack Wordfence

Medium 4.3

2025-01-02< 2.8.4.4

CVE-2024-37274

CVE Patchstack Wordfence

Medium 5.4

2024-06-07< 2.8.4.3

CVE-2024-3987

CVE Patchstack Wordfence

N/A

2023-07-18< 2.8.4

WordPress WP Mobile Menu Plugin < 2.8.4 is vulnerable to Cross Site Scripting (XSS)

Patchstack WPScan CVE

N/A

2019-02-25< 2.7.3

Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update

Wordfence

N/A

2022-03-04< 2.8.2.7

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence

N/A

< 2.7.3

Freemius Library < 2.2.4 - Subscriber+ Arbitrary Option Update

WPScan

N/A

2019-03-02< 2.7.3

WordPress WP Mobile Menu plugin <=2.7.2 - Authenticated Option Update vulnerability (Fremius Library security issue)

Patchstack

N/A

2021-08-09< 2.8.2.3

WordPress WP Mobile Menu plugin <= 2.8.2.2 - Reflected Cross-Site Scripting (XSS) vulnerability

Patchstack

N/A

2022-02-28< 2.8.2.7

WordPress WP Mobile Menu plugin <= 2.8.2.6 - Sensitive Information Disclosure vulnerability

Patchstack

N/A

2022-02-28< 2.8.2.7

WordPress WP Mobile Menu plugin <= 2.8.2.6 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack

Medium 6.1

2021-09-06< 2.8.2.3

CVE-2021-24435

CVE WPScan Wordfence