cleantalk
Vulnerabilities and Security Researches

HT Mega – Absolute Addons For Elementor, CVE-2024-38706

CVE, Research URL

CVE-2024-38706

Home page URL

Security reports for HT Mega – Absolute Addons For Elementor

Application

HT Mega – Absolute Addons For Elementor

Published on
Jul 12, 2024
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in HasThemes HT Mega allows Path Traversal.This issue affects HT Mega: from n/a through 2.5.7.
Affected versions
Min -, max 2.5.8.
Status
vulnerable
Previous vulnerability researches
HT Mega – Absolute Addons For Elementor (CVE-2025-1261) , Mar 09, 2025
HT Mega – Absolute Addons For Elementor (CVE-2024-8910) , Sep 26, 2024
HT Mega – Absolute Addons For Elementor (CVE-2024-12597) , Feb 04, 2025
HT Mega – Absolute Addons For Elementor (CVE-2024-38706) , Jul 14, 2024
HT Mega – Absolute Addons For Elementor (CVE-2021-24261) , Jun 07, 2024
New vulnerability
My Reservation System (CVE-2025-7022) , Aug 02, 2025
Connector for Gravity Forms and Google Sheets (CVE-2025-54682) , Aug 02, 2025
Content Egg (CVE-2025-47536) , Aug 02, 2025
Smart Slider 3 (CVE-2025-6348) , Aug 02, 2025
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2025-54052) , Aug 02, 2025