Lucene search
CVE-2024-3990
HT Mega plugin for WordPress susceptible to Stored XSS via Tooltip & Popover Widge
Show more
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | CVE-2024-3990 | 14 May 202415:42 | – | nvd |
 | CVE-2024-3990 HT Mega – Absolute Addons For Elementor <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tooltip & Popover Widget | 9 May 202420:03 | – | cvelist |
 | WordPress HT Mega Plugin <= 2.5.0 is vulnerable to Cross Site Scripting (XSS) | 8 May 202400:00 | – | patchstack |
 | HT Mega – Absolute Addons For Elementor < 2.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tooltip & Popover Widget | 7 May 202400:00 | – | wpvulndb |
 | CVE-2024-3990 HT Mega – Absolute Addons For Elementor <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tooltip & Popover Widget | 9 May 202420:03 | – | vulnrichment |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (May 6, 2024 to May 12, 2024) | 16 May 202413:04 | – | wordfence |
[
{
"vendor": "devitemsllc",
"product": "HT Mega – Absolute Addons For Elementor",
"versions": [
{
"version": "*",
"status": "affected",
"lessThanOrEqual": "2.5.0",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo14 May 2024 15:42Current
5.7Medium risk
Vulners AI Score5.7
CVSS35.4 - 6.4
EPSS0.00089
SSVC