Lucene search
K

4 matches found

GithubExploit
GithubExploit
added 2024/05/21 2:15 p.m.441 views

Exploit for Missing Authorization in Hasthemes Ht_Mega

CVE-2024-4875 HT Mega – Absolute Addons For Elementor = 2...

4.3CVSS6AI score0.00755EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2024/05/21 8:31 a.m.17 views

CVE-2024-4875 HT Mega – Absolute Addons For Elementor <= 2.5.2 - Missing Authorization to Options Update

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized modification of data|loss of data due to a missing capability check on the 'ajaxdismiss' function in versions up to, and including, 2.5.2. This makes it possible for authenticated attackers, with...

4.3CVSS6.5AI score0.00755EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/05/21 8:31 a.m.33 views

CVE-2024-4875 HT Mega – Absolute Addons For Elementor <= 2.5.2 - Missing Authorization to Options Update

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized modification of data|loss of data due to a missing capability check on the 'ajaxdismiss' function in versions up to, and including, 2.5.2. This makes it possible for authenticated attackers, with...

4.3CVSS4.7AI score0.00755EPSS
Exploits1References3
Patchstack
Patchstack
added 2024/05/21 12:0 a.m.15 views

WordPress HT Mega Plugin <= 2.5.2 is vulnerable to Broken Access Control

Software HT Mega Type Plugin Vulnerable versions = 2.5.2 Fixed in 2.5.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-4875 Patch priority Low CVSS severity Low 4.3 Developer HTMega PSID dfccf3184973 Credits 1337Wannabe Required privilege Subscriber...

4.3CVSS6.5AI score0.00755EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder