CVE-2025-8151 MEDIUM

CVE-2025-8151: HT Mega – Absolute Addons For Elementor <= 2.9.1 - Authenticated (Author+) Path Traversal to Limited Arbitrary CSS File Actions

Vendor Devitemsllc
Product HT Mega Addons for Elementor – Elementor Widgets & Template Builder
Weakness CWE-22 · Path traversal
Published July 31, 2025
Last update April 8, 2026

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 2.9.1 via the 'save_block_css' function. This makes it possible for authenticated attackers, with Author-level access and above, to create CSS files in any directory, and delete CSS files in any directory in a Windows environment.

Explanation of Vulnerability in Simple Terms

02Summary

HT Mega Addons for Elementor versions up to 2.9.1 contain a path traversal vulnerability that allows authenticated users to write files to unintended locations on the server. An attacker with low-level site access can manipulate file paths to store malicious content outside the intended directory, potentially compromising site integrity. Update to a version newer than 2.9.1 to resolve this issue.

What an attacker can do

03Attacker Capabilities

Write files to arbitrary locations on the server outside the intended directory.

Potential impact on your site

04Site Impact

Malicious files could be written to sensitive directories, potentially allowing code execution or data manipulation.

Conditions required to exploit

05Prerequisites

Attacker must have a low-privilege authenticated account on the site.

Key dates

06Disclosure timeline

July 31, 2025 CVE published
April 8, 2026 Record updated