CVE-2025-8068 | HT Mega Plugin up to 2.9.1 on WordPress ajax_trash_templates improper authorization

July 31, 2025 Yanac

A vulnerability was found in HT Mega Plugin up to 2.9.1 on WordPress. It has been classified as critical. Affected is the function ajax_trash_templates. The manipulation leads to improper authorization.

This vulnerability is traded as CVE-2025-8068. It is possible to launch the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-8213 | NinjaScanner Plugin up to 3.2.5 on WordPress nscan_ajax_quarantine denial of service
CVE-2025-54085 | Absolute Security Secure Access up to 13.55 Console permission