VYPR

Ht Mega

by Hasthemes

Source repositories

CVEs (24)

  • CVE-2023-51529MedFeb 29, 2024
    risk 0.28cvss 4.3epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in HasThemes HT Mega – Absolute Addons For Elementor.This issue affects HT Mega – Absolute Addons For Elementor: from n/a through 2.3.3.

  • CVE-2024-4875MedMay 21, 2024
    risk 0.21cvss 4.3epss 0.01

    The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized modification of data|loss of data due to a missing capability check on the 'ajax_dismiss' function in versions up to, and including, 2.5.2. This makes it possible for authenticated…

  • CVE-2023-37999May 17, 2024
    risk 0.04cvss epss 0.03

    Improper Privilege Management vulnerability in HasThemes HT Mega allows Privilege Escalation.This issue affects HT Mega: from n/a through 2.2.0.

  • CVE-2024-8910Sep 25, 2024
    risk 0.00cvss epss 0.00

    The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.5 via the render function in includes/widgets/htmega_accordion.php. This makes it possible for authenticated attackers,…

Page 2 of 2