Lucene search
+L

702 matches found

patchstack
patchstack
added 2025/09/26 9:59 a.m.6 views

WordPress HT Feed Plugin <= 1.3.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin HT Feed versions = 1.3.0...

6.5CVSS6AI score0.0019EPSS
Exploits0Affected Software1
nvd
nvd
added 2025/09/26 9:15 a.m.4 views

CVE-2025-60147

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Feed ht-instagram allows Stored XSS.This issue affects HT Feed: from n/a through = 1.3.0...

6.5CVSS0.0019EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/09/26 8:31 a.m.3 views

CVE-2025-60147 WordPress HT Feed Plugin <= 1.3.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Feed ht-instagram allows Stored XSS.This issue affects HT Feed: from n/a through = 1.3.0...

6.5CVSS5.2AI score0.0019EPSS
Exploits0References1
cve
cve
added 2025/09/26 8:31 a.m.11 views

CVE-2025-60147

CVE-2025-60147: Stored XSS in HT Feed (HT Plugin) affecting HT Feed versions from n/a up to 1.3.0 due to improper input neutralization during web page generation. Base score 6.5 (Medium). Patch status: Patched (remediation details not published in provided docs). Exploitation status not disclosed...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
cvelist
cvelist
added 2025/09/26 8:31 a.m.13 views

CVE-2025-60147 WordPress HT Feed Plugin <= 1.3.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Feed ht-instagram allows Stored XSS.This issue affects HT Feed: from n/a through = 1.3.0...

6.5CVSS0.0019EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/09/26 12:0 a.m.9 views

PT-2025-39590

Name of the Vulnerable Software and Affected Versions HT Feed versions through 1.3.0 Description The HT Feed plugin contains a flaw related to improper input handling during web page creation, which allows for Stored Cross-site Scripting XSS. This means an attacker could inject malicious scripts...

6.5CVSS6.5AI score0.0019EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/09/26 12:0 a.m.4 views

WordPress plugin HT Feed 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.8AI score0.0019EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/09/24 6:30 p.m.4 views

CVE-2025-53463

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Mega – Absolute Addons for WPBakery Page Builder ht-mega-for-wpbakery allows DOM-Based XSS.This issue affects HT Mega – Absolute Addons for WPBakery Page Builder: from n/a through =...

6.5CVSS5.9AI score0.0025EPSS
Exploits0References1
patchstack
patchstack
added 2025/09/22 7:39 p.m.5 views

WordPress HT Mega – Absolute Addons for WPBakery Page Builder Plugin <= 1.0.9 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by theviper17 in WordPress Plugin HT Mega – Absolute Addons for WPBakery Page Builder versions = 1.0.9...

6.5CVSS5.7AI score0.0025EPSS
Exploits0Affected Software1
nvd
nvd
added 2025/09/22 7:15 p.m.3 views

CVE-2025-53463

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Mega – Absolute Addons for WPBakery Page Builder ht-mega-for-wpbakery allows DOM-Based XSS.This issue affects HT Mega – Absolute Addons for WPBakery Page Builder: from n/a through =...

6.5CVSS0.0025EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/09/22 6:25 p.m.2 views

CVE-2025-53463 WordPress HT Mega – Absolute Addons for WPBakery Page Builder Plugin <= 1.0.9 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Mega – Absolute Addons for WPBakery Page Builder ht-mega-for-wpbakery allows DOM-Based XSS.This issue affects HT Mega – Absolute Addons for WPBakery Page Builder: from n/a through =...

6.5CVSS5.2AI score0.0025EPSS
Exploits0References1
cvelist
cvelist
added 2025/09/22 6:25 p.m.11 views

CVE-2025-53463 WordPress HT Mega – Absolute Addons for WPBakery Page Builder Plugin <= 1.0.9 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Mega – Absolute Addons for WPBakery Page Builder ht-mega-for-wpbakery allows DOM-Based XSS.This issue affects HT Mega – Absolute Addons for WPBakery Page Builder: from n/a through =...

6.5CVSS0.0025EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/09/22 12:0 a.m.7 views

PT-2025-38999

Name of the Vulnerable Software and Affected Versions HT Mega – Absolute Addons for WPBakery Page Builder versions through 1.0.9 Description The software contains a flaw related to improper input handling during web page generation, which can lead to Cross-site Scripting XSS. This specific instan...

6.5CVSS5.7AI score0.0025EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/09/22 12:0 a.m.3 views

WordPress plugin HT Mega – Absolute Addons for WPBakery Page Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A cross-site scriptin...

6.5CVSS5.9AI score0.0025EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/08/16 11:25 a.m.5 views

CVE-2025-54695

Missing Authorization vulnerability in DevItems HT Mega ht-mega-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HT Mega: from n/a through = 2.9.0...

5.4CVSS5.9AI score0.00259EPSS
Exploits0References1
cve
cve
added 2025/08/14 10:34 a.m.21 views

CVE-2025-54695

CVE-2025-54695 describes a Missing Authorization vulnerability in HasTech HT Mega (WordPress plugin) up to version 2.9.0. The issue stems from incorrectly configured access control security levels, enabling unauthorized access to restricted functionality. Connected security sources corroborate a ...

5.4CVSS5.9AI score0.00259EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/08/14 10:34 a.m.4 views

CVE-2025-54695 WordPress HT Mega Plugin plugin <= 2.9.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in DevItems HT Mega ht-mega-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HT Mega: from n/a through = 2.9.0...

5.4CVSS5.1AI score0.00259EPSS
Exploits0References1
cvelist
cvelist
added 2025/08/14 10:34 a.m.19 views

CVE-2025-54695 WordPress HT Mega Plugin plugin <= 2.9.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in DevItems HT Mega ht-mega-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HT Mega: from n/a through = 2.9.0...

5.4CVSS0.00259EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/08/14 12:0 a.m.11 views

PT-2025-33247 · Hastech · Hastech Ht Mega

Name of the Vulnerable Software and Affected Versions: HasTech HT Mega versions through 2.9.0 Description: A missing authorization flaw exists in HasTech HT Mega, allowing exploitation of incorrectly configured access control security levels. Recommendations: Update HasTech HT Mega to a version...

5.4CVSS7.1AI score0.00259EPSS
Exploits0References4
cnnvd
cnnvd
added 2025/08/14 12:0 a.m.11 views

WordPress plugin HT Mega 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS6.7AI score0.00259EPSS
Exploits0References1
Rows per page
Query Builder