HT Mega

Authenticated (Contributor+) Sensitive Information Exposure via template_id vulnerability <= 2.6.5

JSON Path Traversal vulnerability <= 2.5.7

Contributor+ Stored CrossSite Scripting via Multiple Widgets vulnerability <= 2.5.5

Authenticated (Contributor+) Stored CrossSite Scripting vulnerability <= 2.5.2

Missing Authorization to Options Update vulnerability <= 2.5.2