Vulners
Lucene search
CVE-2024-3990 HT Mega – Absolute Addons For Elementor <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tooltip & Popover Widget
| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
 | CVE-2024-3990 | 13 Jan 202604:40 | – | circl |
 | WordPress plugin HT Mega 安全漏洞 | 14 May 202400:00 | – | cnnvd |
 | CVE-2024-3990 | 9 May 202420:03 | – | cve |
 | EUVD-2024-32556 | 3 Oct 202520:07 | – | euvd |
 | CVE-2024-3990 | 14 May 202415:42 | – | nvd |
 | CVE-2024-3990 | 14 May 202415:42 | – | osv |
 | WordPress HT Mega plugin <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tooltip & Popover Widget vulnerability | 8 May 202402:10 | – | patchstack |
| WordPress HT Mega Plugin <= 2.5.0 is vulnerable to Cross Site Scripting (XSS) | 8 May 202400:00 | – | patchstack |
 | PT-2024-28717 · WordPress · Ht Mega – Absolute Addons For Elementor | 9 May 202400:00 | – | ptsecurity |
 | CVE-2024-3990 | 23 May 202509:23 | – | redhatcve |
10
[
{
"vendor": "devitemsllc",
"product": "HT Mega Addons for Elementor – Elementor Widgets & Template Builder",
"versions": [
{
"version": "0",
"status": "affected",
"lessThanOrEqual": "2.5.0",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
08 Apr 2026 17:10Current
6.3Medium risk
Vulners AI Score6.3
CVSS 3.16.4
EPSS0.00428