CVE-2025-39361 – WProyal Royal Elementor Addons Cross-site Scripting (XSS)

May 7, 2025

CVE ID : CVE-2025-39361

Published : May 7, 2025, 9:15 a.m. | 2 hours, 20 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in WProyal Royal Elementor Addons allows Stored XSS.This issue affects Royal Elementor Addons: from n/a through 1.7.1017.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4104 – WordPress Frontend Dashboard Privilege Escalation

Next Article CVE-2025-20976 – Samsung Notes Out-of-Bounds Read Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Diablo 4 gives you the chance to win a Mother’s Day candle and express your love (or hatred) with “Mother’s Judgement”

Here’s how to speedrun the Call of Duty: Black Ops 6 and Warzone Blaze of Glory event as fast as possible

How to prevent your PC from locking automatically on Windows 11

Frostpunk 2 heats up with a free “major content update” that overhauls the survival city builder’s core gameplay

Laravel Routing

Laravel Routing

Big Node, VS Code, and Mantine updates

Prepare for Contact Center Week with Colleen Eager

Diablo 4 gives you the chance to win a Mother’s Day candle and express your love (or hatred) with “Mother’s Judgement”

Diablo 4 gives you the chance to win a Mother’s Day candle and express your love (or hatred) with “Mother’s Judgement”

Here’s how to speedrun the Call of Duty: Black Ops 6 and Warzone Blaze of Glory event as fast as possible

How to prevent your PC from locking automatically on Windows 11

CVE-2025-39361 – WProyal Royal Elementor Addons Cross-site Scripting (XSS)

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4533 – JeecgBoot Document Library Upload Remote Resource Consumption Vulnerability

Arriva la Beta di Fedora 42: KDE edizione principale, spin COSMIC e nuova versione di Anaconda

The Importance of Investing in Soft Skills in the Age of AI

CodeQL zero to hero part 4: Gradio framework case study

CVE-2025-4453 – D-Link DIR-619L Remote Command Injection Vulnerability

Import Amazon RDS Enhanced Monitoring metrics into Amazon CloudWatch

How I Created A Popular WordPress Theme And Coined The Term “Hero Section” (Without Realizing It)

I replaced my Samsung Galaxy S24 Ultra with the Z Fold 6 for two weeks – and can’t go back

The Debian Project mourns the loss of Steve Langasek (vorlon)

CVE-2025-39361 – WProyal Royal Elementor Addons Cross-site Scripting (XSS)

Related Posts