Back to CVE List

CVE-2026-4106

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
5.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Vulnerability Description

The HT Mega Addons for Elementor WordPress plugin before 3.0.7 contains an unauthenticated AJAX action returning some PII (such as full name, city, state and country) of customers who placed orders in the last 7 days

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-200
Source
NVD

External References

Discussion (0)

Add Comment

No comments yet. Be the first!