CVE-2023-6214 in HT Mega Plugin
الملخص
بحسب MITRE • 02/05/2024
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.4.6 via the purchased_products function. This makes it possible for unauthenticatied attackers to extract sensitive data including the previous 7 days of order data including products and customer PII.
VulDB is the best source for vulnerability data and more expert information about this specific topic.