cleantalk
Vulnerabilities and Security Researches

Royal Elementor Addons and Templates, CVE-2025-26990

CVE, Research URL

CVE-2025-26990

Home page URL

Security reports for Royal Elementor Addons and Templates

Application

Royal Elementor Addons and Templates

Published on
Apr 15, 2025
Research Description
Server-Side Request Forgery (SSRF) vulnerability in WP Royal Royal Elementor Addons allows Server Side Request Forgery. This issue affects Royal Elementor Addons: from n/a through 1.7.1006.
Affected versions
Min -, max 1.7.1007.
Status
vulnerable
Previous vulnerability researches
Gallery – Photo Albums Plugin (CVE-2025-31586) , Apr 03, 2025
Gallery – Photo Albums Plugin (CVE-2015-7386) , Jun 07, 2024
New vulnerability
Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Wo (CVE-2025-39588) , Apr 19, 2025
VR-Frases (collect & share quotes) (CVE-2025-0861) , Apr 19, 2025
VR-Frases (collect & share quotes) (CVE-2025-22636) , Apr 19, 2025
VR-Frases (collect & share quotes) (CVE-2024-13626) , Apr 19, 2025
Icegram Express – Email Marketing, Newsletters and Automation for WordPress & WooCommerce (CVE-2024-11924) , Apr 19, 2025