Lucene search
K

8 matches found

CNNVD
CNNVD
added 2026/01/22 12:0 a.m.8 views

WordPress plugin Absolute Addons For Elementor has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...

4.3CVSS5.8AI score0.00185EPSS
Exploits0References1
CVE
CVE
added 2024/11/28 10:41 a.m.49 views

CVE-2024-52496

CVE-2024-52496 concerns WordPress plugin Absolute Addons For Elementor (1.0.14.

7.5CVSS7.3AI score0.00706EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/28 12:0 a.m.4 views

WordPress plugin Absolute Addons For Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS8.3AI score0.00706EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/21 8:31 a.m.17 views

CVE-2024-4875 HT Mega – Absolute Addons For Elementor <= 2.5.2 - Missing Authorization to Options Update

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized modification of data|loss of data due to a missing capability check on the 'ajaxdismiss' function in versions up to, and including, 2.5.2. This makes it possible for authenticated attackers, with...

4.3CVSS6.5AI score0.00755EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/05/02 4:51 p.m.14 views

CVE-2024-3308 HT Mega – Absolute Addons For Elementor <= 2.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Grid Widget

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Grid widget's attributes in all versions up to, and including, 2.4.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS6.1AI score0.00423EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/27 11:46 a.m.25 views

CVE-2024-30182 WordPress HT Mega – Absolute Addons For Elementor plugin <= 2.4.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DevItems HT Mega ht-mega-for-elementor.This issue affects HT Mega: from n/a through = 2.4.3...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/03/18 12:0 a.m.13 views

HT Mega – Absolute Addons For Elementor < 2.4.7 - Contributor+ Directory Traversal

Description The HT Mega – Absolute Addons For Elementor plugin is vulnerable to Directory Traversal via the render function. This makes it possible for authenticated attackers, with contributor access or higher, to read the contents of arbitrary files on the server, which can contain sensitive...

8.8CVSS6.8AI score0.01214EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/12/29 11:15 a.m.44 views

CVE-2023-50901

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes HT Mega – Absolute Addons For Elementor allows Reflected XSS.This issue affects HT Mega – Absolute Addons For Elementor: from n/a through 2.3.8...

7.1CVSS0.00351EPSS
Exploits0References1
Rows per page
Query Builder