Responsive Menu

Nonce token leak leading to arbitrary file upload, theme deletion, plugin settings change vulnerability <= 4.1.7

Authenticated Arbitrary File Upload vulnerability <= 4.0.3

CrossSite Request Forgery (CSRF) leading to Arbitrary File Upload vulnerability <= 4.0.3

CrossSite Request Forgery (CSRF) leading to Setting Modification vulnerability <= 4.0.3

CrossSite Request Forgery (CSRF) and CrossSite Scripting (XSS) Vulnerability <= 3.1.3