3 matches found
CVE-2025-1261
creationtimestamp| type| source ---|---|--- 2025-03-08 02:35:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6918 2025-03-08 04:29:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljtoshzfdr2h 2025-03-08 04:36:11+00:00| seen|...
CVE-2025-1261
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the plugin's Countdown widget in all versions up to, and including, 2.8.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...
CVE-2025-1261 HT Mega – Absolute Addons For Elementor <= 2.8.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Countdown Widget
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the plugin's Countdown widget in all versions up to, and including, 2.8.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...