cleantalk
Vulnerabilities and Security Researches

Royal Elementor Addons and Templates, CVE-2025-26990

CVE, Research URL

CVE-2025-26990

Home page URL

Security reports for Royal Elementor Addons and Templates

Application

Royal Elementor Addons and Templates

Published on
Apr 15, 2025
Research Description
Server-Side Request Forgery (SSRF) vulnerability in WP Royal Royal Elementor Addons allows Server Side Request Forgery. This issue affects Royal Elementor Addons: from n/a through 1.7.1006.
Affected versions
Min -, max 1.7.1007.
Status
vulnerable
Previous vulnerability researches
Arconix FAQ (CVE-2024-38783) , Mar 20, 2025
Arconix FAQ (CVE-2024-4233) , Jun 06, 2024
Arconix FAQ (CVE-2025-32531) , Apr 14, 2025
New vulnerability
Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Wo (CVE-2025-39588) , Apr 19, 2025
VR-Frases (collect & share quotes) (CVE-2025-0861) , Apr 19, 2025
VR-Frases (collect & share quotes) (CVE-2025-22636) , Apr 19, 2025
VR-Frases (collect & share quotes) (CVE-2024-13626) , Apr 19, 2025
Icegram Express – Email Marketing, Newsletters and Automation for WordPress & WooCommerce (CVE-2024-11924) , Apr 19, 2025