Medium severity4.3NVD Advisory· Published Sep 25, 2024· Updated Jun 17, 2026
CVE-2024-8910
CVE-2024-8910
Description
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.5 via the render function in includes/widgets/htmega_accordion.php. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive private, pending, and draft template data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=2.6.5
- devitemsllc/HT Mega Addons for Elementor – Elementor Widgets & Template Builderv5Range: 0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.