CVE-2024-38706
WordPress HT Mega plugin <= 2.5.7 - JSON Path Traversal vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Path Traversal: '.../...//' vulnerability in DevItems HT Mega ht-mega-for-elementor.This issue affects HT Mega: from n/a through <= 2.5.7.
| CWE | CWE-35 |
| Vendor | devitems |
| Product | ht mega |
| Published | Jul 12, 2024 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for devitems ht mega
Be the first to know when new unknown vulnerabilities affecting devitems ht mega are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
DevItems / HT Mega
0 โค 2.5.7
References
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/ht-mega-for-elementor/vulnerability/wordpress-ht-mega-plugin-2-5-7-json-path-traversal-vulnerability?_s_id=cve patchstack.com: https://patchstack.com/database/vulnerability/ht-mega-for-elementor/wordpress-ht-mega-plugin-2-5-7-json-path-traversal-vulnerability?_s_id=cve
Credits
Rafie Muhammad | Patchstack Bug Bounty Program