CVE-2021-24261
05.05.2021, 19:15
The HT Mega Absolute Addons for Elementor Page Builder WordPress Plugin before 1.5.7 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
Vendor | Product | Version |
---|---|---|
hasthemes | ht_mega | 𝑥 < 1.5.7 |
𝑥
= Vulnerable software versions
References