cleantalk
Vulnerabilities and Security Researches

Nav Menu Manager, CVE-2025-31017

CVE, Research URL

CVE-2025-31017

Home page URL

Security reports for Nav Menu Manager

Application

Nav Menu Manager

Published on
Apr 09, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Robert Noakes Nav Menu Manager allows Stored XSS. This issue affects Nav Menu Manager: from n/a through 3.2.5.
Affected versions
Min -, max 3.2.6.
Status
vulnerable
Previous vulnerability researches
WP Simple Slideshow (CVE-2025-26576) , Mar 16, 2025
New vulnerability
Total processing card payments for WooCommerce (CVE-2025-32513) , Apr 18, 2025
WordPress Contact Form, Drag and Drop Form Builder Plugin – Live Forms (CVE-2025-39560) , Apr 18, 2025
CRUDLab Scroll to Top (CVE-2025-22774) , Apr 18, 2025
Editor Wysiwyg Background Color (CVE-2025-23958) , Apr 18, 2025
Subscribe to Unlock Lite – Opt In Content Locker Plugin for WordPress (CVE-2025-39592) , Apr 18, 2025