2 matches found
CVE-2024-8910 HT Mega – Absolute Addons For Elementor <= 2.6.5 - Authenticated (Contributor+) Sensitive Information Exposure via template_id
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.5 via the render function in includes/widgets/htmegaaccordion.php. This makes it possible for authenticated attackers, with Contributor-level...
WordPress HT Mega Plugin <= 2.6.5 is vulnerable to Sensitive Data Exposure
Software HT Mega Type Plugin Vulnerable versions = 2.6.5 Fixed in 2.6.6 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-8910 Patch priority Low CVSS severity Low 4.3 Developer HTMega PSID 2309cc03bb5c Credits Ankit Patel Required privilege Contributor...