2022-12-26 12:28:21
WPScan
PUBLISHED
The Menu Item Visibility Control WordPress plugin through 0.5 doesnt sanitize and validate the "Visibility logic" option for WordPress menu items, which could allow highly privileged users to execute arbitrary PHP code even in a hardened environment.