The WordPress Mega Menu plugin for WordPress is vulnerable to Arbitrary File Creation in versions up to, and including, 2.0.6 via the compiler_save AJAX action. This makes it possible for unauthenticated attackers to create arbitrary PHP files that can be used to execute malicious code.

Sicehice


Sicehice automates the collection of cyber threat intelligence from over 30 sources and enables users to search against the collected IPs. It is possible that there will be false positives in our dataset. We are a small group that cannot vet all indicators gathered on an hourly basis.

Listed: