2 matches found
CVE-2025-13141
creationtimestamp| type| source ---|---|--- 2025-11-21 10:20:30+00:00| seen| https://gist.github.com/Darkcrai86/d4f51f4bbd4ecb658eab0256e05c82c9...
CVE-2025-13141 HT Mega – Absolute Addons For Elementor <= 3.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tag Attribute Injection
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Gutenberg blocks in all versions up to, and including, 3.0.0 due to insufficient input validation on user-supplied HTML tag names. This is due to the lack of a tag name...