eDS Responsive Menu - Unfiltered User Input Can Execute Malicious Scripts

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.1

eDS Responsive Menu - Unfiltered User Input Can Execute Malicious Scripts

CVE-2025-68845

Summary

The eDS Responsive Menu plugin, used in some websites, has a security flaw that allows attackers to inject malicious code into web pages. This could happen if a user clicks on a specially crafted link. Website owners who use this plugin should update it to the latest version to prevent potential security risks.

Original title

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in aThemeArt Translations eDS Responsive Menu eds-responsive-menu allows Reflected XSS.This issue ...

Original description

nvd CVSS3.1 7.1

Vulnerability type

CWE-79 Cross-site Scripting (XSS)

https://patchstack.com/database/Wordpress/Plugin/eds-responsive-menu/vulnerabili...

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026