The Royal Elementor Kit theme for WordPress has a security issue where unauthorized individuals can make changes to the theme without permission. This is because of a missing check that allows anyone with subscriber access or higher to update certain settings. However, they can only change these settings to “true” and not anything else.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
