CYBERHAWK / CVE / CVE-2026-4803

CVE-2026-4803

Royal Elementor Addons WordPress Plugin

HIGH CVSS 7.2 vibe

The flaw

Unauthenticated stored XSS through leaked nonce in AJAX action.

What to do

Update to version 1.7.1057 or later

▸ Scan my repo for CVE-2026-4803

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-05-08 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits