CVE-2025-39361 – WProyal Royal Elementor Addons Cross-site Scripting (XSS)

May 7, 2025

CVE ID : CVE-2025-39361

Published : May 7, 2025, 9:15 a.m. | 2 hours, 20 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in WProyal Royal Elementor Addons allows Stored XSS.This issue affects Royal Elementor Addons: from n/a through 1.7.1017.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4104 – WordPress Frontend Dashboard Privilege Escalation

Next Article CVE-2025-20976 – Samsung Notes Out-of-Bounds Read Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I never thought I’d love a triangular PC gaming headset, but these RGB-lit wireless cans are pretty great

When is the best time to book your flight? Google just gave us the golden answer

Diablo 4 gives you the chance to win a Mother’s Day candle and express your love (or hatred) with “Mother’s Judgement”

Here’s how to speedrun the Call of Duty: Black Ops 6 and Warzone Blaze of Glory event as fast as possible

Build Digital Assets & Earn Through Referrals with Biela — A Genuine Opportunity for Entrepreneurs

Build Digital Assets & Earn Through Referrals with Biela — A Genuine Opportunity for Entrepreneurs

Laravel Routing

Big Node, VS Code, and Mantine updates

I never thought I’d love a triangular PC gaming headset, but these RGB-lit wireless cans are pretty great

I never thought I’d love a triangular PC gaming headset, but these RGB-lit wireless cans are pretty great

Drakboot is a GRUB graphical configuration tool

Le notizie minori del mondo GNU/Linux e dintorni della settimana nr 19/2025

CVE-2025-39361 – WProyal Royal Elementor Addons Cross-site Scripting (XSS)

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4547 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

Creativity in UX Design: How AI Can Help

This new mechanical keyboard for writers could be your productivity secret weapon

Diablo 4 fans react poorly to its roadmap reveal — for things Blizzard should’ve already learned from

Microsoft AI Research Open-Sources PromptWizard: A Feedback-Driven AI Framework for Efficient and Scalable LLM Prompt Optimization

Circle to Search on Google Chrome desktop app will soon become a reality, new flag spotted

Automate derivative confirms processing using AWS AI services for the capital markets industry

CVE-2024-6199 – “Huawei Modem DDNS Buffer Overflow Vulnerability”

CVE-2025-37888 – Intel Mellanox Linux Null Pointer Dereference Vulnerability

CVE-2025-39361 – WProyal Royal Elementor Addons Cross-site Scripting (XSS)

Related Posts