CVE-2025-8068 | HT Mega Plugin up to 2.9.1 on WordPress ajax_trash_templates improper authorization

Inserito da Angelo Barbosa | Lug 31, 2025 | CVE

A vulnerability was found in HT Mega Plugin up to 2.9.1 on WordPress. It has been classified as critical. Affected is the function ajax_trash_templates. The manipulation leads to improper authorization.

This vulnerability is traded as CVE-2025-8068. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-8068 | HT Mega Plugin up to 2.9.1 on WordPress ajax_trash_templates improper authorization

Post correlati

CVE-2017-20199 | Buttercup buttercup-browser-extension up to 0.14.2 access control (Issue 92 / ID 89)

CVE-2024-56324 | GoCD up to 24.4.0 /go/*/pipelines/snippet xml external entity reference

CVE-2024-36671 | nodemcu prior 3.0.0-release_20240225 /modules/struct.c getnum integer overflow (ID 3626)

CVE-2022-49160 | Linux Kernel up to 5.15.53/5.16.18/5.17.1 qla2xxx allocation of resources