CVE-2026-2373 | wproyal Royal Addons for Elementor Plugin up to 1.7.1049 on WordPress get_main_query_args authorization (EUVD-2026-12537)

Inserito da Angelo Barbosa | Mar 17, 2026 | CVE

A vulnerability was found in wproyal Royal Addons for Elementor Plugin up to 1.7.1049 on WordPress. It has been declared as problematic. Affected is the function get_main_query_args. Such manipulation leads to missing authorization.

This vulnerability is referenced as CVE-2026-2373. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-2373 | wproyal Royal Addons for Elementor Plugin up to 1.7.1049 on WordPress get_main_query_args authorization (EUVD-2026-12537)

Post correlati

CVE-2025-5736 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request /boafrm/formNtp submit-url buffer overflow

CVE-2023-42751 | Unisoc S8000 Gnss Service out-of-bounds write

CVE-2022-4975 | Red Hat Advanced Cluster Security Portal /main/configmanagement/ cross site scripting

CVE-2025-43822 | Liferay Portal/DXP cross site scripting