CVE-2023-5509 Information

Description

The myStickymenu WordPress plugin before 2.6.5 does not adequately authorize some ajax calls allowing any logged-in user to perform the actions.

Reference

https://wpscan.com/vulnerability/3b33c262-e7f0-4310-b26d-4727d7c25c9d