CVE-2021-24161

Name of the Vulnerable Software and Affected Versions: Responsive Menu (free and Pro) versions prior to 4.0.4

Description: The issue allows attackers to craft a request and trick an administrator into uploading a zip archive containing malicious PHP files, potentially leading to remote code execution and further infection of the targeted site.

Recommendations: For versions prior to 4.0.4, update to version 4.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's upload functionality to minimize the risk of exploitation.