Volerion logoVolerion
Volerion logoVolerion

Royal Addons for Elementor Unauthenticated Media File Upload Vulnerability

Vulnerability

A vulnerability exists in the Royal Addons for Elementor WordPress plugin in versions prior to 1.7.1037, where improper authorization allows unauthenticated users to upload media files. This is achieved through the wpr_addons_upload_file action.

Impact

Exploitation of this vulnerability allows for unauthorized media file uploads, which could be misused to upload malicious files or scripts that could be executed on the server.

Reproduction

To reproduce this vulnerability, import a template kit using the Royal Addons for Elementor plugin. After the import, open the site in a private browser window and access the browser console to retrieve the WprConfig nonce. Then, send a POST request to wp-admin/admin-ajax.php with the action set to wpr_addons_upload_file, including the nonce and the file to be uploaded. The uploaded file will be accessible in the wp-content/uploads/wpr-addons/forms directory.

Remediation

Users are advised to update the Royal Addons for Elementor WordPress plugin to version 1.7.1037 or later.

Added: Dec 15, 2025, 6:20 AM
Updated: Dec 15, 2025, 6:20 AM

Vulnerability Rating

Custom Algorithm
spread
3.4
impact
10.0
exploitability
9.7
remediation
7.7
relevance
1.4
threat
6.4
urgency
2.9
incentive
10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.