CVE-2024-8910 | devitemsllc HT Mega Plugin up to 2.6.5 on WordPress Template Data htmega_accordion.php render exposure of sensitive information through metadata

Posted by Angelo Barbosa | Sep 25, 2024 | CVE

A vulnerability was found in devitemsllc HT Mega Plugin up to 2.6.5 on WordPress and classified as problematic. This issue affects the function render of the file includes/widgets/htmega_accordion.php of the component Template Data Handler. The manipulation leads to exposure of sensitive information through metadata.

The identification of this vulnerability is CVE-2024-8910. The attack may be initiated remotely. There is no exploit available.

CVE-2024-8910 | devitemsllc HT Mega Plugin up to 2.6.5 on WordPress Template Data htmega_accordion.php render exposure of sensitive information through metadata

Related Posts

CVE-2023-51529 | HasThemes HT Mega Plugin up to 2.3.3 on WordPress cross-site request forgery

CVE-2024-43822 | Linux Kernel up to 6.10.2 PCM6240 devm_kzalloc null pointer dereference (fa6f16eff732/3722873d49a1)

CVE-2024-7187 | TOTOLINK A3600R 4.1.2cu.5182_B20201102 /cgi-bin/cstecgi.cgi UploadCustomModule File buffer overflow

CVE-2024-34815 | Codection Import and Export Users and Customers Plugin up to 1.26.5 on WordPress authorization