The WP Mobile Menu plugin for WordPress has a security vulnerability that allows attackers to trick site administrators into unknowingly importing malicious settings. This vulnerability affects versions 2.8.4.3 and older, due to a lack of proper validation on the mobile_menu_import_settings() function.