{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-22T03:40:36.732","vulnerabilities":[{"cve":{"id":"CVE-2025-2871","sourceIdentifier":"security@wordfence.com","published":"2025-04-12T04:15:39.283","lastModified":"2026-06-17T09:07:46.317","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WordPress Mega Menu – QuadMenu plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2.0. This is due to missing or incorrect nonce validation on the ajax_dismiss_notice() function. This makes it possible for unauthenticated attackers to update any user meta to a value of one, including wp_capabilities which could result in a privilege deescalation of an administrator, via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."},{"lang":"es","value":"El complemento Mega Menú – QuadMenu de WordPress es vulnerable a Cross-Site Request Forgery en todas las versiones hasta la 3.2.0 incluida. Esto se debe a una validación de nonce inexistente o incorrecta en la función ajax_dismiss_notice(). Esto permite a atacantes no autenticados actualizar cualquier metadatos de usuario a un valor de uno, incluyendo wp_capabilities, lo que podría resultar en la pérdida de privilegios de un administrador mediante una solicitud falsificada, ya que pueden engañar al administrador del sitio para que realice una acción como hacer clic en un enlace."}],"affected":[{"source":"security@wordfence.com","affectedData":[{"vendor":"quadlayers","product":"QuadMenu – Mega Menu","defaultStatus":"unaffected","versions":[{"version":"0","lessThanOrEqual":"3.2.0","versionType":"semver","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-04-14T16:27:26.139304Z","id":"CVE-2025-2871","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"security@wordfence.com","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/quadmenu/tags/3.2.0/lib/class-admin.php#L105","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset/3270825/quadmenu/tags/3.2.1/lib/class-admin.php","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/1ba7b675-54d6-4f0e-b60f-1c7fa6ff24ea?source=cve","source":"security@wordfence.com"}]}}]}