Filter
AND

Software

hasthemes ht mega
6
hasthemes woolentor - woocommerce elementor addons \+ builder
3
hasthemes hashbar
2
hasthemes wp education
2
hasthemes contact form 7 widget for elementor page builder \& gutenberg blocks
1
hasthemes coupon zen
1
hasthemes ever compare
1
hasthemes extensions for cf7
1
hasthemes free woocommerce theme 99fy extension
1
hasthemes ht builder wordpress
1
hasthemes ht event
1
hasthemes ht feed
1
hasthemes ht politic
1
hasthemes ht portfolio
1
hasthemes ht slider for elementor
1
hasthemes preview link generator
1
hasthemes quickswish
1
hasthemes shoplentor
1
hasthemes wc sales notification
1
hasthemes wp film studio
1
hasthemes wp insurance
1
hasthemes wp news
1
hasthemes wp plugin manager
1

Hasthemes Ht Builder WordpressWordPress HT Builder – WordPress Theme Builder for Elementor plugin <= 1.3.0 - Stored Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-51682

Hasthemes Wp EducationWordPress WP Education for Elementor plugin <= 1.2.8 - Stored Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-49630

HasThemes HT MegaHT Mega – Absolute Addons For Elementor <= 2.6.5 - Authenticated (Contributor+) Sensitive Information Exposure via template_id

medium
4.3
EPSS
0.04%
First published (updated )
CVE-2024-8910

Hasthemes Woolentor - Woocommerce Elementor Addons \+ BuilderShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) <= 2.9.7 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting

medium
6.4
EPSS
0.05%
First published (updated )
CVE-2024-8668

Hasthemes Ht FeedWordPress HT Feed plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-35699

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

HasThemes HT MegaHT Mega – Absolute Addons For Elementor <= 2.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

medium
6.4
EPSS
0.05%
First published (updated )
CVE-2024-4876

HasThemes HT MegaWordPress HT Mega plugin <= 2.4.7 - Sensitive Data Exposure vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-32782

HasThemes HT MegaXSS

medium
6.4
First published (updated )
CVE-2024-1421

HasThemes HT MegaXSS

medium
6.4
First published (updated )
CVE-2024-1397

Hasthemes HashbarWordPress HashBar – WordPress Notification Bar Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-51372

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

HasTheme WishSuiteWordPress WishSuite Plugin <= 1.3.4 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-32962

Hasthemes Wc Sales NotificationWC Sales Notification < 1.2.3 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-1087

Hasthemes Ht PortfolioHT Portfolio < 1.1.6 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0497

Hasthemes Ht EventHT Event < 1.4.6 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0496

Hasthemes Preview Link GeneratorPreview Link Generator < 1.0.4 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-1086

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Hasthemes Wp InsuranceWP Insurance < 2.1.4 - Arbitrary Plugin Activation via CSRF

medium
6.5
First published (updated )
CVE-2023-0501

HasThemes Free WooCommerce Theme 99fy ExtensionFree WooCommerce Theme 99fy Extension < 1.2.8 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0503

Hasthemes Wp Film StudioWP Film Studio < 1.3.5 - Arbitrary Plugin Activation via CSRF

medium
6.5
First published (updated )
CVE-2023-0500

Hasthemes Wp NewsWP News <= 1.1.9 - Arbitrary Plugin Activation via CSRF

medium
6.5
First published (updated )
CVE-2023-0502

Hasthemes Contact Form 7 Widget For Elementor Page Builder \& Gutenberg BlocksContact Form 7 Widget For Elementor Page Builder & Gutenberg Blocks < 1.1.6 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0484

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Hasthemes Ht Slider For ElementorHT Slider For Elementor < 1.4.0 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0495

Hasthemes Ever CompareEver Compare <= 1.2.3 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0505

Hasthemes QuickswishQuickSwish < 1.1.0 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0499

Hasthemes Coupon ZenCoupon Zen < 1.0.6 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-1089

Hasthemes Wp EducationWP Education < 1.2.7 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0498

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Hasthemes Wp Plugin ManagerWP Plugin Manager < 1.1.8 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-1088

HasThemes HT PoliticHT Politic < 2.3.8 - Arbitrary Plugin Activation via CSRF

medium
4.3
First published (updated )
CVE-2023-0504

Hasthemes Woolentor - Woocommerce Elementor Addons \+ BuilderWordPress WooLentor Plugin <= 2.5.1 is vulnerable to Cross Site Request Forgery (CSRF)

medium
5.4
First published (updated )
CVE-2022-46798

HasThemes ShopLentorShopLentor < 2.5.4 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2023-0231

HasThemes Extensions For CF7WordPress Extensions For CF7 Plugin <= 2.0.8 is vulnerable to Cross Site Request Forgery (CSRF)

medium
4.3
First published (updated )
CVE-2023-23899

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203