"In add_menu_page(), the callback function gets hooked unconditionally.
$access_level is ignored."
It is recommended to update all versions of Wordpress to the newest
version, 2.9.2. Running version 2.9.1 or earlier should be treated as:
Priority 4: This vulnerability has a lower probability of exploitation,
but should still be mitigated. Attention to this risk and above should
be notified to the email@example.com mailing list or the involved
Severity 3: This vulnerability poses high risk within a group/school. It
does not pose a risk of contaminating other groups/schools.