CVE-2026-4024 | wproyal Royal Addons for Elementor Plugin up to 1.7.1056 on WordPress wpr_update_form_action_meta authorization

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability classified as critical has been found in wproyal Royal Addons for Elementor Plugin up to 1.7.1056 on WordPress. This affects the function wpr_update_form_action_meta. This manipulation causes missing authorization.

This vulnerability is registered as CVE-2026-4024. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-4024 | wproyal Royal Addons for Elementor Plugin up to 1.7.1056 on WordPress wpr_update_form_action_meta authorization

Post correlati

CVE-2024-31476 | Aruba InstantOS/ArubaOS Command Line Interface command injection (ARUBA-PSA-2024-006)

CVE-2024-2752 | Where Did You Hear About Us Checkout Field for WooCommerce Plugin cross site scripting

CVE-2024-23997 | Lukas Bach yana 1.0.16 src/electron-main.ts cross site scripting

CVE-2025-9870 | Razer Synapse 3 RazerPhilipsHueUninstall Local Privilege Escalation