Rometheme RTMKit Authorization Bypass Vulnerability in WordPress

Vulnerability

An authorization bypass vulnerability has been identified in the Rometheme RTMKit plugin for Elementor, allowing exploitation of improperly configured access control levels. This vulnerability affects RTMKit versions through 1.6.7.

Impact

Exploitation of this vulnerability could lead to unauthorized access or actions by bypassing normal authorization mechanisms.

Added: Oct 29, 2025, 9:23 AM

Updated: Oct 29, 2025, 3:32 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

7.6

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

7.6

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Rometheme RTMKit Authorization Bypass Vulnerability in WordPress

Vulnerability

Impact

Affected Products

Rometheme RTMKit

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating