CVE-2026-6229 | wproyal Royal Addons for Elementor Plugin up to 1.7.1057 on WordPress Query Parameter render_csv_data server-side request forgery

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability, which was classified as critical, has been found in wproyal Royal Addons for Elementor Plugin up to 1.7.1057 on WordPress. Affected by this issue is the function render_csv_data of the component Query Parameter Handler. This manipulation causes server-side request forgery.

This vulnerability appears as CVE-2026-6229. The attack may be initiated remotely. There is no available exploit.

CVE-2026-6229 | wproyal Royal Addons for Elementor Plugin up to 1.7.1057 on WordPress Query Parameter render_csv_data server-side request forgery

Post correlati

CVE-2023-42772 | Intel CPU UEFI Firmware untrusted pointer dereference (intel-sa-01071)

CVE-2025-69414 | Plex Media Server up to 1.42.2.10156 /myplex/account authorization

CVE-2024-24043 | Speedy11CZ MCRPX up to 1.4.0 File path traversal

CVE-2026-22372 | AncoraThemes Isida Plugin up to 1.4.2 on WordPress filename control