Filter

Software

hasthemes ht mega wordpress
4
hasthemes woolentor - woocommerce elementor addons \+ builder
4
hasthemes extensions for cf7
2
hasthemes free woocommerce theme 99fy extension
2
hasthemes hashbar
2
hasthemes ht feed
2
hasthemes shoplentor
2
hasthemes wp education
2
hasthemes contact form 7 widget for elementor page builder \& gutenberg blocks
1
hasthemes coupon zen
1
hasthemes ever compare
1
hasthemes ht builder wordpress
1
hasthemes ht easy ga4 \(google analytics 4\)
1
hasthemes ht event
1
hasthemes ht menu
1
hasthemes ht politic
1
hasthemes ht portfolio
1
hasthemes ht slider for elementor
1
hasthemes justtables
1
hasthemes preview link generator
1
hasthemes quickswish
1
hasthemes really simple google tag manager
1
hasthemes swatchly
1
hasthemes wc sales notification
1
hasthemes wp film studio
1
hasthemes wp insurance
1
hasthemes wp news
1
hasthemes wp plugin manager
1

WordPress HT MegaWordPress HT Mega Absolute Addons for Elementor plugin <= 2.2.0 - Unauthenticated Privilege Escalation vulnerability

critical
9.8
First published (updated )
CVE-2023-37999

HasThemes ShopLentorShopLentor < 2.5.4 - PHP Object Injection

critical
9.8
First published (updated )
CVE-2023-0232

WordPress HT MegaWordPress HT Mega Plugin <= 2.3.3 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-51529

WordPress HT MegaPath Traversal

high
8.8
First published (updated )
CVE-2024-1974

Hasthemes Ht MenuWordPress HT Menu Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-23791

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Hasthemes JusttablesWordPress JustTables – WooCommerce Product Table Plugin <= 1.4.9 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-23803

HasTheme WishSuiteWordPress WishSuite Plugin <= 1.3.3 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-23731

Hasthemes SwatchlyWordPress Swatchly – WooCommerce Variation Swatches for Products Plugin <= 1.2.0 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-23792

Hasthemes Ht FeedWordPress HT Feed Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-23804

Hasthemes Woolentor - Woocommerce Elementor Addons \+ BuilderWordPress WooLentor Plugin <= 2.6.2 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2022-47172

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Hasthemes Really Simple Google Tag ManagerWordPress Really Simple Google Tag Manager Plugin <= 1.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-23801

Hasthemes Ht Easy Ga4 \(google Analytics 4\)WordPress HT Easy GA4 ( Google Analytics 4 ) Plugin <= 1.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-23802

HT Mega - Absolute Addons for Elementor Page BuilderInfoleak

high
7.5
First published (updated )
CVE-2023-6214

WordPress HT MegaWordPress HT Mega Plugin <= 2.3.8 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-50901

WordPress HT MegaWordPress HT Mega – Absolute Addons For Elementor plugin <= 2.4.3 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-30182

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPress HT MegaWordPress HT Mega plugin <= 2.4.7 - Sensitive Data Exposure vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-32782

Hasthemes Ht FeedWordPress HT Feed plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-35699

HasThemes HT Mega WordPressWordPress HT Mega plugin <= 2.5.7 - JSON Path Traversal vulnerability

medium
6.5
First published (updated )
CVE-2024-38706

Hasthemes Wp EducationWordPress WP Education for Elementor plugin <= 1.2.8 - Stored Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-49630

Hasthemes Ht Builder WordpressWordPress HT Builder – WordPress Theme Builder for Elementor plugin <= 1.3.0 - Stored Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-51682

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

HasThemes Free WooCommerce Theme 99fy ExtensionWordPress Free WooCommerce Theme 99fy Extension plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-22801

Hasthemes Wp NewsWP News <= 1.1.9 - Arbitrary Plugin Activation via CSRF

medium
6.5
First published (updated )
CVE-2023-0502

Hasthemes Wp Film StudioWP Film Studio < 1.3.5 - Arbitrary Plugin Activation via CSRF

medium
6.5
First published (updated )
CVE-2023-0500

Hasthemes Wp InsuranceWP Insurance < 2.1.4 - Arbitrary Plugin Activation via CSRF

medium
6.5
First published (updated )
CVE-2023-0501

HT Mega - Absolute Addons for Elementor Page BuilderXSS

medium
6.4
First published (updated )
CVE-2024-1421

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

HT Mega - Absolute Addons for Elementor Page BuilderXSS

medium
6.4
First published (updated )
CVE-2024-1397

WordPress HT MegaXSS

medium
6.4
First published (updated )
CVE-2024-2084

HT Mega - Absolute Addons For ElementorXSS

medium
6.4
First published (updated )
CVE-2024-2085

HT Mega - Absolute Addons for Elementor Page BuilderXSS

medium
6.4
EPSS
0.05%
First published (updated )
CVE-2024-3307

WordPress HT MegaXSS

medium
6.4
First published (updated )
CVE-2024-2790

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203